User guide
Setting the Firewall Security Level
394 Check Point Safe@Office User Guide
Setting the Firewall Security Level
The firewall security level can be controlled using a simple lever available on the Firewall
page. You can set the lever to the following states.
Table 72: Firewall Security Levels
This
level…
Does this…
Further Details
Low Enforces basic control on
incoming connections, while
permitting all outgoing
connections.
All inbound traffic is blocked to the external
Safe@Office appliance IP address, except for
ICMP echoes ("pings").
All outbound connections are allowed.
Medium Enforces strict control on all
incoming connections, while
permitting safe outgoing
connections.
This is the default level and
is recommended for most
cases. Leave it unchanged
unless you have a specific
need for a higher or lower
security level.
All inbound traffic is blocked.
All outbound traffic is allowed to the Internet except
for Windows file sharing (NBT ports 137, 138, 139
and 445).
High Enforces strict control on all
incoming and outgoing
connections.
All inbound traffic is blocked.
Restricts all outbound traffic except for the
following: Web traffic (HTTP, HTTPS), email (IMAP,
POP3, SMTP), ftp, newsgroups, Telnet, DNS,
IPSEC IKE and VPN traffic.