Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
staboi
Participant

Only drop specific service to webserver, inline policy

Hi Everyone,

If I were to access "Host_webserver" with the condition:

1. Drop all SSH & Telnet

2. Allow SSH & Telnet only for "Host_Allowed"

3. Allow anything else

 

Will this inline rule (Screenshot) work? or should I just create normal policy line without inline feature? I can't test it yet in production, policy was created in demo mode. Thanks.

 

0 Kudos
1 Reply
the_rock
Legend
Legend

Looks right. I would say as long as policy verification works, you are good. Honestly, idea is to make sure you allow services you need BEFORE anything thats supposed to be dropped and when it comes to inline layers, as long as "child" rules are not conflicting with "parent" rule, you are good to go.

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events