Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 3 subscribers
  • Views 18359 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Internet access: Block all network and allow an IP address

shinichix
Hi,

Can you please help to show how to configure as follow:
- Block Internet access for all network 
- Allow Internet access follow IP address (1 or 2 , 3, 5. ....)

Thanks,
shinichix


This thread was automatically locked due to age.
Parents
  • 0
    Hi, shinichix, and welcome to the User BB!

    Is this a home-use license?  If not, then do you have a paid subscription for Web Protection?

    To associate specific machines to specific IPs, look in 'Network Services >> DHCP' on the 'IPv4 Lease' tab where you can make IP assignments static based on the MAC address.

    When you did the initial installation you probably already have a rule like 'Internal (Network) -> Web Surfing -> Internet : Allow'.  If you have "Any" in that, replace it with "Internet" as I've indicated.  Replace "Internal (Network)" with "Internet Allowed" to restrict internet access to only the members of the group.

    Since all traffic is dropped by default unless explicitly allowed, you don't need the following block rule recommended by Flo, but it would keep the Firewall log file smaller and "cleaner."

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob... I'm attempting the same thing on a home-use license - latest firmware 

     

    If I created a rule in the FW:

    Position: 4

    Sources: Internet allowed (all my mac assigned, dhcp hosts)

    Services: Web Surfing

    Destinations: Internet IPv4

    Action: Allow

     

    ... what would be the cause for my devices still having internet access once disabling that rule?

Reply
  • 0 in reply to BAlfson

    Hi Bob... I'm attempting the same thing on a home-use license - latest firmware 

     

    If I created a rule in the FW:

    Position: 4

    Sources: Internet allowed (all my mac assigned, dhcp hosts)

    Services: Web Surfing

    Destinations: Internet IPv4

    Action: Allow

     

    ... what would be the cause for my devices still having internet access once disabling that rule?

Children
  • 0 in reply to Atmosphere

    Hi, and welcome to the UTM Community!

    The hint in my post above was asking if he had a Web Protection subscription.  See #2 in Rulz.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML