SonicWALL 3500 User Manual
Page 38
Creating Network Access Rules
Creating Network Access Rules
A zone is a logical grouping of one or more interfaces designed
to make management, such as the definition and application of
access rules, a simpler and more intuitive process than
following a strict physical interface scheme.
to make management, such as the definition and application of
access rules, a simpler and more intuitive process than
following a strict physical interface scheme.
By default, the SonicWALL security appliance’s stateful packet
inspection allows all communication from the LAN to the
Internet, and blocks all traffic from the Internet to the LAN. The
following behaviors are defined by the “Default” stateful
inspection packet access rule enabled in the SonicWALL
security appliance:
inspection allows all communication from the LAN to the
Internet, and blocks all traffic from the Internet to the LAN. The
following behaviors are defined by the “Default” stateful
inspection packet access rule enabled in the SonicWALL
security appliance:
To create an access rule:
1.
1.
On the Firewall > Access Rules page in the matrix view,
click the arrow connecting the two zones that need a rule.
2.
On the Access Rules page, click Add.
The access rules are sorted from the most specific at the
top to the least specific at the bottom of the table. At the
bottom of the table is the Any rule.
top to the least specific at the bottom of the table. At the
bottom of the table is the Any rule.
Originating Zone
Destination Zone
Action
LAN, WLAN
WAN, DMZ
Allow
DMZ WAN
Allow
WAN
DMZ
Deny
WAN and DMZ
LAN or WLAN
Deny