Blocking inbound connections
I have installed Firewalla today to replace my untangle that I was running before. Aside from the lack of L2TP vpn server (which I knew about before purchasing), I'm pretty pleased with how smoothly it has gone in.
One thing I am struggling with is restricting inbound traffic and between my networks.
I have a port open through NAT, but I would like to restrict access to a few source IPs, and can't find out how to do this (I have another that I would like to deny to IPs originating in China).
-
You can just add a block "region" rule to all of your devices. See https://help.firewalla.com/hc/en-us/articles/360035080933-Firewalla-Regional-Filtering-Geo-IP-TLD-Blocking
-
Old thread, but I have a use case for this too. We have been getting botnet attacks to some of our public facing servers. I’ve got a long list of IP addresses to block, but only want to block incoming only. This botnet attacking is happening to servers NOT on the firewalla yet. But I’ve created a target list with these IP subnets. I would like to block Incoming only. I already have a “Allow Sources” for the USA only on the Port Forward, but wish I could also have a Block too. Some of these subnets are from the US.
-
No, Incoming from Public. You have the ability to say allow from target list, ip address, region .... while this is great, would like to also have the ability to say block from this target list. One of the subnets I have blocked is 85.0.0.0/8 which is a wide net, but in the event there is a valid IP address a device needs to reach OUT to, I don't want to block it.
Please sign in to leave a comment.
Comments
9 comments