How to block ICMP (Ping ) using Application control

How to block ICMP (Ping ) using Application control

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

1. Login to the SonicWall Management GUI.
2. Navigate to Policy|Security services|App control
3. Check the box under Enable App Control and click on the Accept button at the bottom to enable App Control.
4. Under Signatures| View Style select PROTOCOLS under Category.
5. Select ICMP under Application
6. Click on the configure icon under Application with ICMP selected.
7. In the Edit App Control App window, select Enable under Block and Log.
8. Click on OK to save.

Enabling Application Control on zones

1. Navigate to Objects|Zones
2. Click on the configure button under the zone where you want enable App Control.
3. Check Enable App Control Service.
4. Click on OK to save.

Resolution for SonicOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

1. Login to the SonicWall Management GUI.
2. Navigate to the Manage | Rules | App Control Advanced page. 
3. Check the box under Enable App Control and click on the Accept button at the top to enable App Control.
4. Under App Control Advanced | View Style select PROTOCOLS under Category.
5. Select ICMP under Application
6. Click on the configure icon under Application with ICMP selected.
7. In the Edit App Control App window, select Enable under Block and Log.
8. Click on OK to save.

Enabling Application Control on zones

1. Navigate to Manage | Network | Zones
2. Click on the configure button under the zone where you want enable App Control.
3. Check Enable App Control Service.
4. Click on OK to save.

How To test

From any of your LAN machine try to ping 4.2.2.2 ( Public DNS ),you will get the request time out in computer and following the logs in SonicWall.

Resolution for SonicOS 6.2 and Below

The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.

• Login to the SonicWall Management GUI.
• Navigate to the Firewall | App Control Advanced page. In Gen5 TZ devices this page is under Security Services | App Control
• Check the box under Enable App Control and click on the Accept button at the top to enable App Control.
• Under App Control Advanced | View Style select PROTOCOLS under Category.
• Select ICMP under Application
• Click on the configure icon under Application with ICMP selected.
• In the Edit App Control App window, select Enable under Block and Log.
• Click on OK to save.

Enabling Application Control on zones

1. Navigate to Network | Zones
2. Click on the configure button under the zone where you want enable App Control.
3. Check Enable App Control Service.
4. Click on OK to save.

How To test

From any of your LAN machine try to ping 4.2.2.2 ( Public DNS ),you will get the request time out in computer and following the logs in SonicWall.