This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

removing legacy "any" rules best practice

I would like to remove firewall rules that are open to any port e.g. domain controllers to the internet, is there a recommended procedure to doing this, should a rule with restricted ports be added above the legacy rule ? or is there another way sophos recommends fixing this firewall and network weakness.



This thread was automatically locked due to age.
Parents
  • Haigh and we,come to the UTM Community!

    You understand!

    That's exactly the technique to use.  Firewall rules are in an ordered (numbered) list.  For each ordered list in WebAdmin, no further entries are considered once the traffic matches to a rule.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • Haigh and we,come to the UTM Community!

    You understand!

    That's exactly the technique to use.  Firewall rules are in an ordered (numbered) list.  For each ordered list in WebAdmin, no further entries are considered once the traffic matches to a rule.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data