ProSecure Unified Threat Management (UTM) Appliance

Create DMZ WAN Outbound Service Rules

You can change the default outbound policy or define rules that specify exceptions to the default outbound policy. By adding custom rules, you can block or allow access based on the service or application, source or destination IP addresses, and time of day. An outbound rule can block or allow traffic between the DMZ and any external WAN IP address according to the schedule created in the Schedule screen.

To create an outbound DMZ WAN service rule:

1.In the DMZ WAN Rules screen, click the Add table. The Add DMZ WAN Outbound Service

table button under the Outbound Services screen displays:

Figure 71.

2.Enter the settings as explained in Table 27 on page 130.

3.Click Apply. The new rule is now added to the Outbound Services table. The rule is automatically enabled.

Create DMZ WAN Inbound Service Rules

The Inbound Services table lists all existing rules for inbound traffic. If you have not defined any rules, no rules are listed. By default, all inbound traffic (from the Internet to the DMZ) is blocked.

Inbound rules that are configured on the LAN WAN Rules screen take precedence over inbound rules that are configured on the DMZ WAN Rules screen. As a result, if an inbound packet matches an inbound rule on the LAN WAN Rules screen, it is not matched against the inbound rules on the DMZ WAN Rules screen.

Firewall Protection

144

Page 144
Image 144
NETGEAR UTM5EW-100NAS, STM150EW-100NAS Create DMZ WAN Outbound Service Rules, Create DMZ WAN Inbound Service Rules, 144