Filtering Outgoing Traffic For A Custom Policy - Watchguard Firebox X20E User Manual
Firmware version 8.6 all firebox x edge e-series standard and wireless models
Hide thumbs
Also See for Firebox X20E:
- Reference manual (78 pages) ,
- Quick start manual (12 pages) ,
- User manual (314 pages)
Table of Contents
Advertisement
In the address text boxes, type the host or network IP address, or type the range of IP addresses
5
that identify the computers on the external network that can send traffic to the service host.
Type network IP addresses in "slash" notation. For more information on slash notation see
"Sample VPN Address Information Table" on page 200
Click Add. The From box shows the host range, host IP address, or network IP address that you
6
typed.
Repeat steps 4-6 until all of the address information for this custom policy is set. The From box
7
can have more than one entry.
If this policy is only for incoming traffic, keep the outgoing filter set to No Rule.
8
To limit which computers can send information using this policy, go to the subsequent section,
"Filtering outgoing traffic for a custom policy. "
Click Submit.
9
Filtering outgoing traffic for a custom policy
These steps restrict outgoing traffic through the Firebox X Edge. Refer to the previous section for infor-
mation on how to restrict incoming traffic.
From the Outgoing Filter drop-down list, select Allow or Deny.
1
To allow all outgoing traffic from the trusted or optional network to the external network using
this policy, skip to step 9.
To restrict which computers on the trusted or optional network can send traffic to the external
2
network with this policy, use the drop-down list below the From box to select Host IP Address,
Network IP Address, Host Range, or Alias. If you select Alias, you can choose from Trusted
Network, Optional Network, or Wireless Guest Network.
To only restrict which computers receive information, skip to step 6.
In the adjacent text boxes, type the host or network IP address, or type the range of IP addresses
3
that identify the computers on the trusted or optional network that can use this policy to send
traffic to the external network.
Network IP addresses must be entered in "slash" notation.
Click Add. The From box shows the IP addresses you added.
4
Repeat steps 2-4 until all of the address information for this custom policy is set. The From box
5
can have more than one entry.
To limit which computers on the external network can receive network traffic with this policy,
6
use the drop-down list below the To box to select Host IP Address, Network IP Address, or
Host Range.
In the adjacent text boxes, type the host or network IP address, or type the range of IP addresses
7
that identify the computers on the external network that internal computers can connect to with
this policy.
Network IP addresses must be entered in "slash" notation.
Click Add. The To box shows the IP addresses you added.
8
Repeat steps 6-8 until all of the address information for this custom policy is set. The To box can
9
have more than one entry.
If this policy is only for outgoing traffic, keep the Incoming Filter set to No Rule.
10
To restrict which computers can receive information using this policy, go to the previous section,
"Filtering incoming traffic for a custom policy" on page 98.
User Guide
Configuring Custom Packet Filter Policies
99
Hide quick links:
Advertisement
Table of Contents
