Results 1 to 3 of 3
  1. #1
    Newbie
    Join Date
    Oct 2020
    Posts
    1

    Default Configuring Appliance

    Good day folks,
    I am purchasing a Z6 appliance and would like to know if the following configuration will be at all possible. Long story short, i need to ringfence\sandbox an entire department from the rest of the company. The company currently has a Fortigate firewall, with AD servers and fileservers with network shares set up. I require this department to be totally inaccessible from any device or user outside the department i need to ringfence, but i need the users from within the department to be able to log into the domain, as well as access shares. In other words, block all incoming traffic apart from the services needed to auth with AD, but block access from outside the department. Any help and suggestions will be appreciated.
    CMcNaughton likes this.

  2. #2
    Untangler jcoffin's Avatar
    Join Date
    Aug 2008
    Location
    Sunnyvale, CA
    Posts
    9,191

    Default

    If the department is put on a different interface or VLAN, then you can use filter rules in config -> network -> filter rules to create a one way gate to the network. Use source = <other interfaces> and destination = <fence network> blocked to create the scenario above.
    CMcNaughton likes this.
    Attention: Support and help on the Untangle Forums is provided by
    volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Master Untangler CMcNaughton's Avatar
    Join Date
    Feb 2015
    Location
    Denver, CO
    Posts
    148

    Default

    Quote Originally Posted by kaizerSoze View Post
    In other words, block all incoming traffic apart from the services needed to auth with AD, but block access from outside the department. Any help and suggestions will be appreciated.
    First off, welcome to the forums! I'd agree with JC about just using a VLAN/filter rules. This is a pretty common scenario these days. If you have any trouble setting it up after purchase, let us know - we also offer some professional services to get things set up for you.

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2