3. Now enter:
• Minimum TTL: 10
• Minimum Cache Time: 1000
4. Click OK
Example 3.8. Using FQDN Objects with an IP Policy
In this example, connections from internal clients on the lannet network to the web site
www.example.com will not be allowed.
Command-Line Interface
A. Create the FQDN object for www.example.com:
Command-Line Interface
gw-world:/> add Address FQDNAddress example_website Address=www.example.com
B. Drop connections to the site:
gw-world:/> add IPPolicy SourceInterface=lan
SourceNetwork=lan_net
DestinationInterface=any
DestinationNetwork=example_website
Service=all_services
Name=deny_lan_to_example
Action=Deny
Web Interface
A. Create the FQDN object for www.example.com:
Web Interface
1. Go to: Objects > Address Book > Add > FQDN Address
2. Now enter:
• Name: example_website
• Address: www.example.com
3. Click OK
B. Drop connections to the site:
1. Go to: Policies > Firewalling > Add > IP Policy
2. Now enter:
Chapter 3: Fundamentals
154
To Next Page
Loading...
