Ugo Bellavance wrote:
Tim Dickson wrote:
But really, it's your firewall and you can manage it how you see fit!
I know, but even if I'd liked to, I don't think this option is available
in the GUI anyway.
Well, it's not explicit, you have to play with rules ordering.
Define an Alias with all the internal subnets you don't want to be
accessible to clients on the 'Internet-only' net, then in that net's tab
of the 'rules' page, put something like:
Block any from 'restricted subnet' to InternalNetsAlias
Allow TCP from 'restricted subnet' to any port AllowedPortAlias
HTH,
Angelo Turetta
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
