This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Do I not need a default deny firewall rule to block WAN traffic?

I have much experience with other firewalls, specifically Sonicwall appliances. With those devices, I will typically have a default deny rule like this:

Is this not necessary in a UTM 9? Everything seems to work fine with only a NAT rule, it just seemed odd to me. Is all traffic blocked unless otherwise configured, I.E. it wouldn't know what to do with that traffic?

Thanks!

This thread was automatically locked due to age.

Parents

0 sachingurung over 8 years ago

Hi William,

Interesting question, we do not block WAN to LAN communication via a Firewall Rule. But we must take care of few things like your Global DNS server should not be exposed to ANY network, SSH access should be allowed on a particular IP address and there should be explicit IPS policies in place to prevent attacks.

Thanks

Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 sachingurung over 8 years ago

Hi William,

Interesting question, we do not block WAN to LAN communication via a Firewall Rule. But we must take care of few things like your Global DNS server should not be exposed to ANY network, SSH access should be allowed on a particular IP address and there should be explicit IPS policies in place to prevent attacks.

Thanks

Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data