- Individual Applications
Protect
Filter
Perform
Connect
Add-Ons
- Software Packages
- Complete Appliances
04-30-2009, 09:27 PM
|
#1 (permalink) |
|
Master Untangler
Join Date: Oct 2008
Posts: 140
 |
Firewall setup example
Dear all
Is there anyone here can share or help me setting up firewall? I only will allow browsing internet, access email, ftp for some client. others applications should not go to internet. And regarding email, only my email server is able to send email. PC from my network should not send email (probably virus / spyware) Please help Thanks YUAN |
|
|
04-30-2009, 11:18 PM
|
#2 (permalink) |
|
Untangle Junkie
 
Join Date: Nov 2006
Location: San Mateo, CA
URLs submitted: 10
Posts: 10,611
|
just set to the default rule to block, then add all the ports you would like to pass in a rule.
port 53 for DNS, 80 for web, etc.
__________________
Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself. If you need Untangle support please call or email support@untangle.com |
|
|
|
04-30-2009, 11:26 PM
|
#3 (permalink) | |
|
Master Untangler
Join Date: Oct 2008
Posts: 140
|
Thanks for your reply,
But do you have a list of common port that I should know? YUAN Quote:
|
|
|
|
|
05-01-2009, 12:24 AM
|
#4 (permalink) |
   
Join Date: Jan 2009
Location: Sweden (Eskilstuna)
URLs submitted: 57
Posts: 3,877
 |
Hi,
Allow FTP Code:
Enable Rule: Yes Description: Allow FTP 21 Action: Pass Log: Up to you Rule Traffic Type: TCP AND UDP Source Interface: Internal Destination Interface: External Source Address: any (or limit by 192.168.10.2,192.168.10.5) Destination Address: any Source Port: any Destination Port: 21 Code:
Enable Rule: Yes Description: Allow DNS 53 Action: Pass Log: Up to you Rule Traffic Type: TCP AND UDP Source Interface: Internal Destination Interface: External Source Address: any Destination Address: any Source Port: any Destination Port: 53 Code:
Enable Rule: Yes Description: Allow Port 80 HTTP Action: Pass Log: Up to you Rule Traffic Type: TCP AND UDP Source Interface: Internal Destination Interface: External Source Address: any Destination Address: any Source Port: any Destination Port: 80 Code:
Enable Rule: Yes Description: Allow Port 443 HTTP Action: Pass Log: Up to you Rule Traffic Type: TCP AND UDP Source Interface: Internal Destination Interface: External Source Address: any Destination Address: any Source Port: any Destination Port: 443 http://forums.untangle.com/networkin...il-server.html for port numbers you can use: http://www.iana.org/assignments/port-numbers
__________________
"Of all the things I've lost, I miss my mind the most" Untangle Reseller (Sweden) WebFooL@fakenews.se http://fakenews.se/ Need space to Upload content for you forum post? http://about.me/webfool |
|
|
|
05-30-2009, 07:51 AM
|
#5 (permalink) |
|
Untanglit
Join Date: May 2009
Posts: 22
|
This is interesting, i was looking for this kind of info to. I have a bit more question
If i select block all and had those rules but i am also running a mail server do i need to put other rules? Is open VPN in need of something special? Thank you i advance  |
|
|
|
06-11-2009, 05:20 AM
|
#7 (permalink) |
|
Untanglit
Join Date: Jun 2009
Posts: 27
|
If i select block all and had those rules but i am also running a mail server do i need to put other rules?
Yes, add the POP and SMTP ports and select it only for your mail server if other computer is not allowed to send mail. Otherwise, accept for the internal source Yes, for openVPN, you need to set some rules. You can follow this tutorial http://www.vancocomputing.com/blogs/...configuration/ Good luck Last edited by 3minds; 06-11-2009 at 05:30 AM.. |
|
|
 |
| Thread Tools | |
|
|
LinkBacks (?)
LinkBack to this Thread: http://forums.untangle.com/firewall/9060-firewall-setup-example.html
|
||||
| Posted By | For | Type | Date | |
| Firewall-setup-example---Untangle-Forums | This thread | Refback | 04-06-2011 12:07 AM | |
