SonicWALL E6500 manual Creating Network Access Rules

Page 45

Select the from and to zones from the From Zone and To Zone menus.

Select the service or group of services affected by the access rule from the Service list. If the service is not listed, you must define the service in the Add Service window. Select Create New Service or Create New Group to display the Add Service window or Add Service Group window.

Select the source of the traffic affected by the access rule from the Source list. Selecting Create New Network displays the Add Address Object window.

Select the destination of the traffic affected by the access rule from the Destination list. Selecting Create New Network displays the Add Address Object window.

From the Users Allowed menu, add the user or user group affected by the access rule.

Select a schedule from the Schedule menu. The default schedule is Always on.

Enter any comments to help identify the access rule in the Comments field.

4.Click on the Advanced tab.

If you would like for the access rule to timeout after a different period of TCP inactivity, set the amount of time, in minutes, in the TCP Connection Inactivity Timeout (minutes) field. The default value is 60 minutes.

If you would like for the access rule to timeout after a different period of UDP inactivity, set the amount of time, in minutes, in the UDP Connection Inactivity Timeout (minutes) field. The default value is 30 minutes.

Specify the number of connections allowed as a percent of maximum number of connections allowed by the SonicWALL security appliance in the Number of connections allowed (% of maximum connections) field.

Select Create a reflexive rule if you want to create a matching access rule to this one in the opposite direction--from your destination zone or address object to your source zone or address object.

Page 44 Creating Network Access Rules

Image 45
Contents NSA E6500 Getting Started Guide SonicWALL NSA E6500 Document ContentsSonicWALL NSA E6500 FrontThis Section Pre-Configuration TasksCheck Package Contents Administrator Information Obtain Configuration InformationObtain Internet Service Provider ISP Information Registration InformationLCD Screen Front PanelBack Panel LCD Control Buttons Front Bezel Control FeaturesStatus Main MenuConfigure Restart Configuration OptionsSafeMode Screen-SaverLAN IP Configuration Front Bezel Configuration ExampleRegistering Your Appliance Before You Register Product Registration Registering and Licensing Your Appliance on mysonicwall.comGateway Services Licensing Security Services and SoftwareSonicWALL NSA E6500 Getting Started Guide Registration Next Steps Registering a Second Appliance as a BackupDeployment Scenarios Selecting a Deployment Scenario ABCScenario a NAT/Route Mode Gateway Scenario B State Sync Pair in NAT/Route Mode Scenario C L2 Bridge Mode Initial Setup Connecting the WAN PortSystem Requirements Applying Power Connecting the LAN PortAccessing the Setup Wizard Accessing the Management InterfaceTesting Your Connection Connecting to Your NetworkActivating Licenses in SonicOS Saving a Backup Copy of Your Preferences Upgrading Firmware on Your SonicWALLObtaining the Latest Firmware Upgrading the Firmware Using SafeMode to Upgrade FirmwareAdditional Deployment Initial High Availability Setup Configuring a State Sync Pair in NAT/Route ModeConfiguring Advanced HA Settings Configuring High Availability34 Configuring a State Sync Pair in NAT/Route Mode Synchronizing Settings Synchronizing Firmware Adjusting High Availability SettingsYour Appliance on mysonicwall.com HA License Configuration OverviewAssociating Pre-Registered Appliances Configuring L2 Bridge Mode Configuring the Primary Bridge InterfaceConnection Overview IP Assignment drop-down, select Layer 2 Bridged Mode Configuring the Secondary Bridge InterfaceAdditional Deployment Configuration An Introduction to Zones and Interfaces Creating Network Access RulesSonicWALL NSA E6500 Getting Started Guide 44 Creating Network Access Rules Creating a NAT Policy Configuring Address Objects Configuring NAT Policies Enabling Security Services in SonicOS Applying Security Services to ZonesGateway Anti-Virus Intrusion Prevention Anti-Spyware Using Packet Capture Troubleshooting Diagnostic ToolsUsing Ping Using the Active Connections Monitor Using Log View For this Task See this Chapter Deployment Configuration Reference Checklist54 Deployment Configuration Reference Checklist Support and Training Options Knowledge Portal Customer SupportUser Forums Training Related Documentation SonicWALL Live Product Demos Dynamic TooltipsSonicWALL NSA E6500 Getting Started Guide 62 SonicWALL Live Product Demos Rack Mounting Instructions Rack Mounting Instructions SSEMBLEMTHEL3LIDET2AIL  &ASTEN TWOSIDEDISCREWSWTOOTHETRAIL SSEMBLEMNNERE2AILITOO#HASSIS NSERTT#HASSISATOO&RAME  3LIDEIINNER CHANNELEINTOORAILS 68 Rack Mounting Instructions Product Safety and Regulatory Information Rack Mounting the SonicWALL Safety and Regulatory InformationHinweis zur Lithiumbatterie FCC Part 15 Class a Notice Trademarks Copyright NoticePage SonicWALL NSA E6500 Getting Started Guide Page Protection AT the Speed of Business