Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » need help in configuring
  •  
Anonymous
Karma:
dear friends
I am facing a big problem in kerio, I set up the whole kerio firewall , and getting the internet access as well, but the access is alllowed for everyone
( trafic policy source any dest any) if we allowed full then only i can access from clients. but if i m giving access through ipaddress in place of "any" i cant.
Please help me out , If you give me a configuration file or any link who will solve my problem or any special configuration that i need to do. please help me out
your suggestion is highly appriciable
thank u
  •  
feite

Messages: 523
Karma: 0
Send a private message to this user
Create the following rules (sample for webbrowsing, ftp and hosting a webserver on machine in lan):

name: browsing lan
source: lan (network connected to interface...)
dest: internet (network connected to ...)
service: http, https
action: allow
logging: packet (if debugging)
translation: NAT default outgoing
protocol inspector: default

name: ftp lan
source: lan (network connected to interface...)
dest: internet (network connected to ...)
service: ftp
action: allow
logging: packet (if debugging)
translation: NAT default outgoing
protocol inspector: default

name: browsing firewall
source: firewall
dest: internet (network connected to ...)
service: http, https
action: allow
logging: packet (if debugging)
translation: none
protocol inspector: default

name: ftp firewall
source: firewall
dest: internet (network connected to ...)
service: ftp
action: allow
logging: packet (if debugging)
translation: none
protocol inspector: default

name: webservice lan (server is in lan)
source: internet
dest: firewall
service: http, https
action: allow
logging: packet (if debugging)
translation: map (ip of webserver)
protocol inspector: default

If you want to control internet access for http and/or ftp you can use HTTP Policy rules and/or FTP Policy rules.
Previous Topic: VPN Tunnel - netlogon error 5807
Next Topic: When 64 bit edition of kerio winroute firewall will be available?
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Thu Nov 23 12:35:56 CET 2017

Total time taken to generate the page: 0.00826 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.