How to blow all traffic except condition matched traffic? RRS feed

  • Question

  • We have development requirements is like:

    1. Outbound traffic toward specified IP and username allowed. (for example, initialed by user abc toward allowed.

    2. All other Outbound traffic is blocked.

    Any suggestion for how to implemented above wanted firewall rule.


    Saturday, September 28, 2013 3:17 AM

All replies

  • At ALE_AUTH_CONNECT add a block filter with a low weight and no conditions In your sublayer. At the sam layer and sublayer, create a permit filter with the ALE_USER_ID and IP_REMOTE_ADDRESS conditions with a higher weight.  The traffic will match against the most specific filter.

    hope this helps,

    Dusty Harper [MSFT]
    Microsoft Corporation
    This posting is provided "AS IS", with NO warranties and confers NO rights

    Sunday, October 13, 2013 2:25 AM