Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » Bi-directional control (Traffic rules)
  •  
lightyear26

Messages: 11
Karma: 0
Send a private message to this user
Hi. New to kerio and trying to understand how i setup a bi-directional rules. I want to put our mailserver in a DMZ and set it so that traffic 'originating' from the internal LAN sources can talk to the mail server, but any traffic 'originating' from the mailserver in the DMZ to the LAN will get dropped.
Can someone advise me the best way to set this up please?
Thanks very much.
  •  
ICT and Me

Messages: 936

Karma: 53
Send a private message to this user
Two different rules. Inbound and Outbound. And just use the protocols that are needed.
Inbound
Source: Local LAN/Trusted
Dest: DMZ
Services: smtp,smpts,smtp sm,pop3,pop3s,imap,imaps,ping, etc
action allow

Outbound
turn around source and dest.

ICT and Me
Carlo Turk
The Netherlands
www.ictandme.nl
  •  
lightyear26

Messages: 11
Karma: 0
Send a private message to this user
Thanks for your reply. I can get data to talk from LAN to DMZ both ways OK, but on our old firewall, we could set a rule so if data originated from the LAN source to the DMZ destination, it would get a reply. If data requests originated from the DMZ source to the LAN network, they would get dropped. Is that possible?
Appreciate your help but these rules are tying up my tiny brain!
Previous Topic: Please Help Me - Set this UP !
Next Topic: Security settings
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Sat Aug 19 18:46:39 CEST 2017

Total time taken to generate the page: 0.00430 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.