Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 674 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Site to Site SSL Firewall?

DavePackham
I have an existing SSL S2S and its up and works.  

192.168.0.1/24 net  10.1.1.0/24 net

I need to block the people on the 192 side from seeing/accessing the 10 net side...

what do I pick in the firewall rules to prevent them from coming back into the 10 net side but still allow the 10 net people to see/use 192 net services?


This thread was automatically locked due to age.
Parents
  • 0
    Hi,

    1. You need to turn of the "Auto Firewall Rule" option on the VPN, if it's set.

    2. create a firewall rule, above your other rules:
    source: 192.168.0.1/24
    dest: 10.1.1.0/24 
    service: any
    DROP, LOG

    3. create an ALLOW rule for the other direction

    Barry
Reply
  • 0
    Hi,

    1. You need to turn of the "Auto Firewall Rule" option on the VPN, if it's set.

    2. create a firewall rule, above your other rules:
    source: 192.168.0.1/24
    dest: 10.1.1.0/24 
    service: any
    DROP, LOG

    3. create an ALLOW rule for the other direction

    Barry
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML