cancel
Showing results for 
Search instead for 
Did you mean: 
Login & Join the DevCentral Connects Group to watch the Recorded LiveStream (May 12) on Basic iControl Security - show notes included.

"Port lockdown" option for SNAT pool addresses?

Fallout1984
Cirrocumulus
Cirrocumulus

For self/floating IPs there's a "port lockdown" option that can be set to "allow none" ("Specifies that this self IP accepts no traffic. If you are using this self IP as the local endpoint for WAN optimization, select this option to avoid potential port conflicts.") in order to secure it. I don't see a similar option for SNAT pool addresses, however. How would I go about doing that other than block such addresses on the border firewall?

 

Thanks!

1 ACCEPTED SOLUTION

Lidev
MVP
MVP

Hi Fallout1984,

 

You can also use Packet filter to filter traffic going to these SNAT pool addresses : Configuring Packet Filtering

Regards

View solution in original post

3 REPLIES 3

Lidev
MVP
MVP

Hi Fallout1984,

 

You can also use Packet filter to filter traffic going to these SNAT pool addresses : Configuring Packet Filtering

Regards

Fallout1984
Cirrocumulus
Cirrocumulus

Thanks for the quick response - much appreciated! 😀

you're welcome mate 😉