I am on latest stable version of XG. Version 18.0.5... I would just like to drop certain traffic on TCP/UDP ports. i.e. On Vlan 101, I would like to drop all traffic on UDP 53 w/ the exception of [IP-Address Range]. Can someone walk me through this. I am stuck.
Thanks, Chase B
Hi Chase Bradshaw,
Thank you for reaching out to Sophos Community.
You need to create a source-based firewall rule(action: Drop) with required services and have to add an exclusion for IP-Address Range.
Please find below snapshots for reference:
Firewall rule:
Assuming VLAN 101 is in the LAN zone.
Add exclusion for "IP-Address range":
Quote