SonicOS 7.1 Firewall
- SonicOS 7.1
- About SonicOS
- About Firewall
- Advanced
- Flood Protection
- SSL Control
- Cipher Control
- Real-Time Black List (RBL) Filter
- Use cases
Access Rule Options
To configure Access Rule options:
- Navigate to Device > Firewall Settings > Advanced.
-
Scroll to Access Rule Options.
-
The default configuration allows FTP connections from port 20, but remaps outbound traffic to a port such as 1024. To enforce any FTP data connection through the security appliance must come from port 20 or the connection is dropped, select Force inbound and outbound FTP data connections to use default port 20. If the option is selected, the event is then logged as a log event on the security appliance. This option is not selected by default.
-
To apply firewall rules received on a LAN interface and destined for the same LAN interface, select Apply firewall rules for intra-LAN traffic to/from the same interface.Typically, this is only necessary when secondary LAN subnets are configured. This option is not selected by default.
-
To send an RST (reset) packet to drop the connection for discarded outgoing TCP connections, select Always issue RST for discarded outgoing TCP connections. This option is selected by default.
-
To redirect ICMP packets on LAN zone interfaces, select Enable ICMP Redirect on LAN zone. This option is selected by default.
-
To drop packets when the detected IP address is recognized as the one by the subnet, select Drop packets which source IP is subnet broadcast address. This option is not selected by default.
-
Click ACCEPT.
Was This Article Helpful?
Help us to improve our support portal