DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

v2920 firewall rule help

  • broadlybanned
  • Topic Author
  • Offline
  • New Member
  • New Member
More
16 Sep 2012 22:09 #73523 by broadlybanned
v2920 firewall rule help was created by broadlybanned
Hi all. Please forgive me if I ask some dumb questions, I'm a vigor-newb trying to get my v2920 set up.

I've set up the default rule to BLOCK (firewall->General Setup->Default Rule tab->Filter action=Block) as I wanted a firewall and not a "default pass everything simple NAT router"! However this obviously means that I must have specific filter rules to pass what I need across the firewall. So I have set up IP objects and groups for all my kit, and service objects and groups for all the services I want to access on the internet, such as and DNS, Web, mail, video streaming etc. I have added rules to the Default Call Filter to allow out DNS and Web (plus others), but I'm not getting any web access from the LAN (unless I set the Default Rule to "pass", rather than block and I don't want that!). I'm also confused about the role of the Data Filter, so here's my questions:
1. Do I need a rule to allow LAN->WAN Web in the Data Filter (in addition to the Call Filter)?
2. Do I need a rule to allow WAN->LAN Web responses in the Data Filter?
3. Is there a knowledgebase with example rulesets anywhere?

Grateful for any advice. Thanks. :?

Please Log in or Create an account to join the conversation.

Moderators: ChrisSami