Security Gateway Manual XG-7100
Destination
This Firewall (self)
If clients are to use DNS servers other than the firewall, use those as the destination instead.
Destination Port Range
DNS, or choose Other and enter 53
To allow DNS over TLS as well, add another rule for DNS over TLS or port 853.
Description
Text describing the rule, e.g. Allow clients to resolve DNS through the firewall
• Click Save
Add rule to pass ICMP to firewall
• Click to add a new rule at the bottom of the list.
• Configure the rule as follows:
Action
Pass
Interface
OPTx (or the custom name)
Protocol
ICMP
ICMP Subtype
Any is OK in this case, ICMP is useful but some people prefer to limit to Echo Request only to
allow ping and nothing else.
Source
OPTx Net (or the custom name)
Destination
This Firewall (self)
Description
Allow client ICMP to the firewall
• Click Save
Add rule to reject any other traffic to firewall
• Click to add a new rule at the bottom of the list.
• Configure the rule as follows:
Action
Reject
Interface
OPTx (or the custom name)
Protocol
Any
Source
Any
© Copyright 2024 Rubicon Communications LLC 62
To Next Page
Loading...
