dslreports logo
 
    All Forums Hot Topics Gallery
spc
Search similar:


uniqs
1020
orlofsky
join:2014-09-23
USA

orlofsky

Member

ZYWALL Block Outbound Traffic from LAN to WAN

In our company we have a sub-network that is accessed remotely by VPN. No devices on this sub-network are allowed access to the WAN except over a site-to-site VPN. No devices on the sub-network are allowed access to the Internet period. Currently the production firewall is a Cisco ASA5505. Blocking the outbound traffic is accomplished on the ASA5505 by disabling Dynamic NAT.

The goal is to retire the ASA5505 and replace it with a Zywall 110. Does anyone have a suggestion using the Zywall 110 to block traffic from the LAN from access to the WAN? By factory default the Zywall 110 is configured to permit LAN to WAN traffic and to provide dynamic NAT.

Tom Orlofsky

Brano
I hate Vogons
MVM
join:2002-06-25
Burlington, ON

Brano

MVM

You can create firewall rule and block LAN-to-WAN access based on host, subnet, range, protocol, port or zone. ...pick one that fits your scenario.

Anav
Sarcastic Llama? Naw, Just Acerbic
Premium Member
join:2001-07-16
Dartmouth, NS

Anav to orlofsky

Premium Member

to orlofsky
Easy as pie. Burn that Crisco.