Firewall Policy Main Settings:
Name: (label)
Incoming
Interface:
(LAN in most cases)
Outgoing
Interface:
(WAN in most cases)
Source:
(LAN Source)
Destination: (WAN Target as IPs or
Services)
Service: (Protocols)
Action: Allow Or Deny
***Warning***
Do
not use ANY or ALL as an option in the fields (Source, Destination and Service),
try to use what you need exactly.
Example:
Allow WhatsApp web on PC1
Name: (Allow
WhatsApp web)
Incoming
Interface: (LAN)
Outgoing
Interface: (WAN1)
Source:
(PC1)
Destination: (meta-WhatsApp
| Service or web.whatsapp.com | FQDN addresses)
Service: (HTTPS)
Action: Allow
Which Main Services (Ports) you need to Allow (Open)?
PDC
Emulator Domain Controller:
NTP - 123 UDP&TCP and DNS – 53 UDP&TCP
AD Domain
Controllers (non PDC Emulator):
DNS – 53 UDP&TCP
Internal
Database and File Servers:
No-Service Required
NAS
Storage and Backup Servers: SMTPS
– 465 TCP, HTTP - 8080 TCP, HTTPS - 433 TCP.
Workstations: HTTP – 80 TCP, HTTPS – 433 and Mail clients ports { SMTP – 587 TCP, SMTPS – 465 TCP, IMAP – 143 TCP, IMAPS – 993, POP3 – 110 TCP and POP3S – 995 TCP }.
No comments:
Post a Comment