User guide
Proxy Settings
136 Firebox X Edge e-Series
Set access control options
On the Outgoing or Incoming tab, you can set rules that filter IP addresses, network addresses, or host ranges.
This is the same functionality you have in packet filter policies.
1. Select the Outgoing tab.
2. From the Outgoing Filter drop-down list, select Deny, Allow, or No Rule.
3. Use the From drop-down list to add the IP address, network address, range of IP addresses of
computers on the trusted or optional network, or an alias for which this policy applies.
Network IP addresses must be entered in slash notation (also known as Classless Inter Domain Routing or CIDR
notation). For more information, see
About Slash Notation.
4. Click Add. The From text box shows the IP addresses you added. The From text box can have more
than one entry.
5. Use the To drop-down list to add the IP address, network address, range of IP addresses of computers
on the external network, or alias for which this policy applies.
Network IP addresses must be entered in slash notation.
6. Click Add.
To add additional IP addresses, repeat steps 3–6.
POP3 proxy: Proxy limits
On the POP3 Settings tab, you can adjust timeout and line length limits. This stops the POP3 proxy from using
too many network resources and can prevent some types of attacks. You can also customize the deny
message that users see when an email message they try to download from the email server is blocked. For a
complete description of the actions the POP3 proxy takes and the results your users see when the POP3 proxy
finds and blocks content, see the FAQs for the Edge at http://www.watchguard.com/support/faq/edge
.
Timeout
This setting limits the number of seconds that the email client tries to open a connection to the email
server before the connection is closed. This prevents the proxy from using too many network
resources when the email server is slow or cannot be reached.