Specifications
Firewall Protection
137
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
• Bandwidth profiles. After you have a configured a bandwidth profile (see Create
Bandwidth Profiles on page 181), you can assign it to a rule.
Outbound Rules (Service Blocking)
The VPN firewall allows you to block the use of certain Internet services by computers on
your network. This is called service blocking or port filtering.
Note: See Enable Source MAC Filtering on page 190 for yet another way
to block outbound traffic from selected computers that would
otherwise be allowed by the firewall.
The following table describes the fields that define the rules for outbound traffic and that are
common to most Outbound Service screens (see Figure 77 on page 148, Figure 83 on
page 154, and Figure 89 on page 160).
The steps to configure outbound rules are described in the following sections:
• Configure LAN WAN Rules
• Configure DMZ W
AN Rules
• Configure LAN DMZ Rules
Table 33. Outbound rules overview
Setting Description Outbound Rules
Service The service or application to be covered by this rule. If the service
or application does not display in the list, you need to define it
using the Services screen (see Add Customized Services on
page 177).
All rules
Action
The action for outgoing connections covered by this rule:
•
BLOCK always
• BLOCK by schedule, otherwise allow
• ALLOW always
• ALLOW by schedule, otherwise block
Note: Any outbound traffic that is not blocked by rules you create
is allowed by the default rule.
Note: ALLOW rules are useful only if the traffic is already covered
by a BLOCK rule. That is, you wish to allow a subset of traffic that
is blocked by another rule.
All rules