Results 1 to 5 of 5
  1. #1
    Untangler
    Join Date
    Dec 2010
    Posts
    83

    Default Blocking Internal Clients from Reaching External Interfaces

    Hi,
    I have deployed Untangle in Transparent Mode behind a Firewall. It's configure d with two WAN Connections and 1 Internal Interfaces.

    The Clients in the Internal Interfaces are having Untangle Internal IP Address as a Gateway. I have noticed that the clients can reach all the external Interfaces via the Internal Interfaces of Untangle.

    How can I prevent users behind the Untangle from reaching external Interfaces?

    But I want them to access certain websites that hosted in the DMZ "External Interfaces of Untangle".

    Thanks,
    Last edited by habibalby; 04-22-2012 at 02:06 AM. Reason: Screen Shot

  2. #2
    Untangler
    Join Date
    Dec 2010
    Posts
    83

    Default

    hello,
    Found that the rule that I made in the previous screen shot, its actually blocking the entire Internet access from all Internal Clients

    I need a rule to block unnecessary traffic goes from Internal to External and allow only the necessary things such as FTP or Web Server.

    Thanks,

  3. #3
    Newbie
    Join Date
    May 2012
    Posts
    3

    Default

    This maybe a bit off topic, but seems like emails with large attachments are blocked from coming in. I looked thru the forums, but did not really find any sound solution.

  4. #4
    some dude hlarsen's Avatar
    Join Date
    Jul 2010
    Location
    sfba
    Posts
    1,385

    Default

    Quote Originally Posted by sodola View Post
    This maybe a bit off topic, but seems like emails with large attachments are blocked from coming in. I looked thru the forums, but did not really find any sound solution.
    yes, it's off topic - next time it's better to start your own thread.

    http://wiki.untangle.com/index.php/S...ivered._Why.3F

  5. #5
    Untangle Ninja Mathiau's Avatar
    Join Date
    Feb 2008
    Location
    Costa Frickn' Rica
    Posts
    1,636

    Default

    use firewall rules to block source and destinations.
    to block certain website you would need to block all website using the webfilter and then add sites you want viewable in the passlist.
    kv-2 | UT 11.0.1 | Dell R610 Server | Intel Xeon 2.8Ghz Quad Cores | 24Gb DDR3 ECC | 1 Intel QPort NIC | Integrated Broadcom QP | Dell Perc 4i | 6 x 73G 2.5 15k SAS raid 10 | 100mb/100mb | 30mb/30Mb

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2