|
ZYWALL Block Outbound Traffic from LAN to WANIn our company we have a sub-network that is accessed remotely by VPN. No devices on this sub-network are allowed access to the WAN except over a site-to-site VPN. No devices on the sub-network are allowed access to the Internet period. Currently the production firewall is a Cisco ASA5505. Blocking the outbound traffic is accomplished on the ASA5505 by disabling Dynamic NAT.
The goal is to retire the ASA5505 and replace it with a Zywall 110. Does anyone have a suggestion using the Zywall 110 to block traffic from the LAN from access to the WAN? By factory default the Zywall 110 is configured to permit LAN to WAN traffic and to provide dynamic NAT.
Tom Orlofsky |
|
BranoI hate Vogons MVM join:2002-06-25 Burlington, ON |
Brano
MVM
2014-Oct-28 11:51 am
You can create firewall rule and block LAN-to-WAN access based on host, subnet, range, protocol, port or zone. ...pick one that fits your scenario. |
|
AnavSarcastic Llama? Naw, Just Acerbic Premium Member join:2001-07-16 Dartmouth, NS |
to orlofsky
Easy as pie. Burn that Crisco. |
|