1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RVS4000 Firewall Question

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by jsparks, Aug 5, 2007.

  1. jsparks

    jsparks Guest

    Greetings.

    I just purchased and setup an RVS4000 for my small business. I have it configured and everything seems to be working properly.

    I started woking on the "IP Based ACL" screen and expected it work like other firewall products I have used like SonicWall, m0n0Wall, pfSense, etc.

    First, I'm wondering why the first two default rules automatically allow all traffic in an out of the router. Good security practice would be to block all traffic in and out by default and only allow the specific traffic you want to allow from your LAN to the WAN or vice versa.

    Second, I'm wondering if it is possible to achieve this with additional rules. I tried a scenario like this to block all incoming and outgoing traffic and then open all http and https traffic:

    Rule Priority 1 : allow http to and from anything
    Rule Priority 2 : allow https to and from anything
    Rule Priority 3 : allow dns to and from anything
    Rule Priority 4 : deny everything from wan to lan
    Rule Priority 5 : deny everything from lan to wan

    Does anyone see a problem with this logic? When rule 4, or rule 5, or both rules 4 and 5, are active/enabled I can not get to any Web sites with a Web browser.

    I don't understand why you would need allow rules in a firewall if you cant initially block all traffic.

    Any help available?

    Thanks in advance,

    Jim Sparks
     
  2. blechkiste

    blechkiste Guest

    Hi Jim

    Good to see that I'm not the only one having the same issues to understand the "logic" of this firewall. Anybody out there that could explain the logic of "IP Based ACL" feature?
    Regards,
    Walter
     

Share This Page