Outgoing access
Your SnapGear appliance can be configured to restrict network traffic going out the Internet interface. These restrictions can be applied to specific hosts or networks (defined by IP address), or globally across all hosts on your internal LAN.
Outgoing Access restrictions are applied by denying a group of services (e.g. web and email) from specific hosts or networks or globally across all hosts.
Your SnapGear appliance’s Outgoing Access Restrictions are configured using security group classes. Click the security group classes link on the Outgoing Access Configuration page to set the restrictions for each security group class. Each security group class can be configured to restrict certain TCP/IP application protocols or to block specified TCP and UDP ports as shown in the following figure:
Figure 6.4 Security group classes configuration
You can specify the restrictions for each security group class to impose, and apply the restrictions globally to all machines on your local network or to specific machines or networks.
62
Firewall
