Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[Monstah]

Hi,

I'm fairly new to configuring firewalls and we've just got a DFL-210.  I'm looking at compiling my ruleset and something I wanted to ask about was how to block reserved and local address that are inbound on the wan interface.  I want to drop spoofed 192.168.X.X, 172.16.X.X etc from coming in but I can't work out how to make rules that are that detailed.

It's possible I'm approaching this the wrong way so please excuse my ignorance.

Any help would be much appreciated.

Cheers

Dan

[Fatman]

The IP Rules listed on this firewall are followed by a default deny that rejects all traffic not specifically listed.

IP Rules could be made specifically to block this traffic, but not only would that be covered by the default deny, but the subject of Access Rules comes up, Access rules define interfaces and Ingress networks, and are evaluated before IP Rules.

You can't see them but by default an Access Rule is created allowing ingress traffic from interface networks on their own interfaces, there is also a default deny Access Rule.

In summary, if you do nothing you are covered, or your could write an IP Rule, Access Rule, or both to specifically block this traffic, and you would be extra covered.  It is your call.

[Monstah]

   Thanks for the reply Fatman.

That makes a lot of sense, Re: implicit deny etc, so I can see that I'm covered without having to worry about configuring specific rules.

Cheers.

[Fatman]

I hope this product works out for you, best of luck!