• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Block inbound traffic?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> General >> Block inbound traffic? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Block inbound traffic? - 23.Jun.2011 7:56:57 PM   
Satanmat

 

Posts: 26
Joined: 15.Aug.2008
Status: offline
I'd like to have ISA block (ignore really) all traffic from China.

I have in my SMTP inbound rule to deny inbound email from APNIC addresses. but do any of you know of a way to block all such traffic with a rule that I could put first in my list, so that all traffic from there is denied?

I saw one post talking about creating a new network, but that is a bit of work to put in all those IPs I have a "computer set" that has all the APNIC addresses and I'd like to use that if possible.

something like being able to copy the "Default Rule" and change the "From" so that it blocks the APNIC computer set of addresses that I have...

Thoughts?
Post #: 1
RE: Block inbound traffic? - 24.Jun.2011 10:13:28 AM   
paulo.oliveira

 

Posts: 3472
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

you can edit the From tab of your publishing rule and add this computer set on the Exceptions.

Regards,
Paulo Oliveira.

_____________________________

Microsoft Premier Field Engineer (PFE)
Blog: http://poliveirasilva.wordpress.com/
Twitter: https://twitter.com/poliveirasilva

(in reply to Satanmat)
Post #: 2
RE: Block inbound traffic? - 24.Jun.2011 11:35:43 AM   
Satanmat

 

Posts: 26
Joined: 15.Aug.2008
Status: offline
well I set up an access rule to
block:: inbound TCP and recieve UDP
on ports 1-65535
from my APNIC computer set
to internal

and after it replicated through, I've not been port scanned from there...

web traffic to china telecom and Baidu still seem to work... so we'll see.

(in reply to paulo.oliveira)
Post #: 3
RE: Block inbound traffic? - 25.Jun.2011 8:20:44 AM   
paulo.oliveira

 

Posts: 3472
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

no, you donīt have to create an access rule to it.

Port scans can not be avoided.

Regards,
Paulo Oliveira.

_____________________________

Microsoft Premier Field Engineer (PFE)
Blog: http://poliveirasilva.wordpress.com/
Twitter: https://twitter.com/poliveirasilva

(in reply to Satanmat)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> General >> Block inbound traffic? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts