Create Firewall Rule
To create and configure firewall rules, go to the Rules> Firewall tab in the Timus Manager:
Click the Create New button on the top right of the page.
Configuration of Firewall
Action can be Allow or Deny.
Status is selected as Enabled by default. Yet, you can select Disabled while creating a rule to make it enabled later.
The Source can be Network, Site, IP, Location(GeoIP), User, Team, Device, Tag and you are allowed to add multiple sources.
The Destination can be Network, Site, IP, User, Team, Device, Tag, Category, Website, Keywords and you are allowed to add multiple destinations.
The service can be selected from the pre-defined list as shown in the image below or you can select Custom to customize the rule. If you would like to define a rule for both TCP and UDP, you can select TCP/UDP as shown in the image below. You are allowed to define multiple services.
You can block/allow any countries by using the option Location on both Source and Destination.
If you enable Custom Source Port, you are allowed to define a specific source port. Otherwise, the source port would be selected as Any.
Clear sessions: If enabled, all the existing sessions of the source items in the rule will be cleared when the rule is applied. This means the rule will be enforced immediately for all source items, without the need to wait for termination of their existing sessions. If disabled, the rule will be enforced for the source items after their existing sessions are terminated. This is disabled by default.
Log rules: If enabled, traffic logs related to this rule will be collected. Otherwise, they will not be collected. This is enabled by default.
Schedule: This is defined as Everyday. If you would like to select a specific period of time/duration, you can modify the schedule depending on your needs.
There are 2 rules defined by default and they are not editable, deletable or movable.
If you would like to prioritize the rules you have created, you can use the drag-and-drop directive, and the rule order is from top to bottom.
To be able to block the paths on the URLs lie example.com/timus, you need to make sure that the SSL Inspection is enabled on the device and the certificate has been installed successfully.
Last updated