Adding new Smoothwall access rules

Tip: You can configure a Smoothwall access rule that prevents access to the Smoothwall Filter and Firewall administration user interface for all IP addresses and interfaces. To regain access, see our knowledge base article, Regaining Access to the Administration UI After Creating an Access Rule to Block Traffic.

Prerequisite

Procedure

Note: Any address objects and object groups created here are also made available for use in future rules, or existing rule amendments.

  1. On the NETWORK menu, under the Firewall submenu, click Smoothwall access and either:
  2. In the Add Smoothwall access rule dialog box, enter a meaningful Name for the rule.
  3. Select or search for the Source IP addresses for this rule and either click Include » or Exclude » to exclude IP addresses from this rule.
  4. For the Inbound interfaces that network traffic arrives at, the Destination IP addresses that this rule forwards traffic to, the Services for this rule and the user Groups that network traffic originates from, select or search for the object and click Add ».
  5. From the Action list, select if the network traffic is Accepted, silently Dropped or if it's Rejected and an ICMP destination-unreachable is sent back to the originator.
  6. To log matching network connections, select the Log option, enter a descriptive Comment for this rule and click Save changes.

WARNING: Selecting the Log option can generate a large amount of log data. We recommend that you only select this for "Drop" and "Reject" Smoothwall Firewall rules.

Follow-up tasks

WARNING: Deleting a rule that has a current established connection causes that connection to fail. We recommend that you delete rules when the Smoothwall Firewall is processing minimal traffic, such as overnight.

Read more

About access rules

Smoothwall Filter and Firewall services

About Sections

Things you can do here

Adding sections

Page reference details

Smoothwall access

Watch the video

Smoothwall access

Something not right? .