DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

Pass one domain on a 2820

More
12 Oct 2009 23:32 #58246 by garys
Pass one domain on a 2820 was created by garys
Could anyone please help in suggesting settings for my 2820Vn.

I'd like one internal ip to access a single external domain only, rejecting all others.

Thanks

Please Log in or Create an account to join the conversation.

More
13 Oct 2009 08:37 #58249 by johntankard
Replied by johntankard on topic Pass one domain on a 2820
Hi Gary,

I would suggest blocking all outbound port 80 access for that internal ip and then set up an allow exception in the firewall to let port 80 through for that internal ip to the designated external ip for the site you want to connect to, hope that makes sense.

Regards John

Please Log in or Create an account to join the conversation.

More
14 Oct 2009 13:46 #58265 by garys
Replied by garys on topic Pass one domain on a 2820
Thanks John, that's about the size of it and more or less what I imagined would be the way to do it. It's not the method, it's the execution I was unsure of!

Blocking port 80 is straight forward enough in "Firewall >> Edit Filter Set >> Edit Filter Rule" but I'm unsure how to create the exception. ?

Thanks again for your help.

Please Log in or Create an account to join the conversation.

More
14 Oct 2009 16:01 #58269 by voodle
Replied by voodle on topic Pass one domain on a 2820
To make the exception, you'd set the first rule to Block if No Further Match, then create a second rule with the source / destination IP that you want to let through and set it to Pass Immediately.

You may also need to make sure that you haven't set a Source Port in the Service Type, you should normally only need destination port.

Please Log in or Create an account to join the conversation.

More
15 Oct 2009 12:45 #58282 by garys
Replied by garys on topic Pass one domain on a 2820
Doh! Should have opened my eyes!

Thanks Voodle

Please Log in or Create an account to join the conversation.

Moderators: ChrisSami