Could anyone please help in suggesting settings for my 2820Vn.

I'd like one internal ip to access a single external domain only, rejecting all others.

Thanks

Hi Gary,

I would suggest blocking all outbound port 80 access for that internal ip and then set up an allow exception in the firewall to let port 80 through for that internal ip to the designated external ip for the site you want to connect to, hope that makes sense.

Regards John

Thanks John, that's about the size of it and more or less what I imagined would be the way to do it. It's not the method, it's the execution I was unsure of!

Blocking port 80 is straight forward enough in "Firewall >> Edit Filter Set >> Edit Filter Rule" but I'm unsure how to create the exception. ?

Thanks again for your help.

To make the exception, you'd set the first rule to Block if No Further Match, then create a second rule with the source / destination IP that you want to let through and set it to Pass Immediately.

You may also need to make sure that you haven't set a Source Port in the Service Type, you should normally only need destination port.

Doh! Should have opened my eyes!

Thanks Voodle