Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 1 subscriber
  • Views 1362 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

limit certain user to certain machine PART 2

equintana
Hi,

After created the new user and installed ssl astaro client under win 7. I added some new rules like:

User***(network)->any->desired machine allow
Userxx(network)->any->any  drop


With this sample.... this user can ping any machine... 

Any idea?


This thread was automatically locked due to age.
Parents
  • 0
    Ping behavior is determined by the settings on the 'ICMP' tab of 'Network Security >> Packet Filter'.  I don't think you can make a manual PF rule affecting pings, but I'm ready to be corrected if it's possible.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Ping behavior is determined by the settings on the 'ICMP' tab of 'Network Security >> Packet Filter'.  I don't think you can make a manual PF rule affecting pings, but I'm ready to be corrected if it's possible.


    Hi Bob, I believe it's been mentioned in these forums that one can create service definitions for ICMP...  There's already one in 7.507 and I don't think I put it there...
    ping ICMP  [T08/C00]  Ping: Echo request

    But it is easy in v7 to create a new one as well.

    Barry
Reply
  • 0 in reply to BAlfson
    Ping behavior is determined by the settings on the 'ICMP' tab of 'Network Security >> Packet Filter'.  I don't think you can make a manual PF rule affecting pings, but I'm ready to be corrected if it's possible.


    Hi Bob, I believe it's been mentioned in these forums that one can create service definitions for ICMP...  There's already one in 7.507 and I don't think I put it there...
    ping ICMP  [T08/C00]  Ping: Echo request

    But it is easy in v7 to create a new one as well.

    Barry
Children
No Data
Cookie Information Banner