Applicable Version: 15.01.0 onwards Scenario Configure Sophos Firewall (SF) to allow only incoming and outgoing emails while blocking all other Internet Traffic. Configuration You must be logged in to the Admin Console as an administrator with Read-Write permission for relevant feature(s). Step 1: Create a service. Create a service with all the ports for Email Traffic. Go to Objects > Hosts and Services > Services and click Add . As an example, we have considered 120 as the Source Port. The destination ports for SMTP/S, IMAP/S, POP#/S are shown in the image below. Step 2: Create a Policy to Allow Email Traffic Go to Policies and click + Add Firewall Rule to create a new User/Network rule using the following parameters. Parameter Value Description About this rule Name All_Emails Enter a name for the Rule. Identity Match rule-based on user identity Disabled Click to match the rule based on user identity. Source Zone LAN Specify the source zone to which the rule applies. Networks Any IP Address Specify the source host or network address to which the rule applies. Services EmailServices Select the service/service group to which the rule applies. Schedule All the time Select the schedule for the rule. Destination Zone WAN Specify the destination zone to which the rule applies. Network/Host Any IP Address Specify the destination host or network address to which the rule applies. Action Action Accept Select the rule's action. Click Save to create the Policy. Step 3: Update the Default Policies Update the Default Policies , namely #LAN_WAN_AnyTraffic and #LAN_WAN_LiveUserTraffic to drop all Internet Traffic. By following the configuration above, email traffic will be the only traffic allowed. Document Version: 1.0 – 05 October, 2015 123568
↧