08/29/2022 172 People found this article helpful 465,301 Views
Using firewall Rules to block outbound Internet access to computers behind the SonicWall
This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.
Internet access can be completely blocked by creating a DENY access rule from LAN to WAN on the SonicWall.
In this example, we are going to block outbound Internet access to computers behind the SonicWall.
Procedure
1. Login to your SonicWall management page and click on Policy tab on the top of the page.
2. Navigate to Rules and Policies | Access Rules page.
3. Click on "All Zones -> All Zones" and select From Zone LAN to Zone WAN.
4. Click on Add to get Add Rule Window. Create an access rule from LAN to WAN as below:
NOTE:You may block specific source IP addresses by specifying an appropriate host, network, range or group address object instead of "ANY".
5. Click on Add.
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.
Internet access can be completely blocked by creating a DENY access rule from LAN to WAN on the SonicWall.
In this example, we are going to block a computer with IP 192.168.168.2. Created Address Object for IP 192.168.168.2 with name as "My PC"
Procedure
NOTE:You may block specific source IP addresses by specifying an appropriate host, network, range or group address object instead of "ANY".
The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.
Internet access can be completely blocked by creating a DENY access rule from LAN to WAN on the SonicWall.
Firmware 6.x:
NOTE: The [*] indicates that all the computers behind the selected Interface will be blocked.
SonicOS Standard:
NOTE: The [*] indicates that all the computers behind the selected Interface will be blocked.
SonicOS Enhanced:
NOTE:You may block specific source IP addresses by specifying an appropriate host, network, range or group address object instead of "ANY".