Port Filtering on an Airwall Gateway
Each Airwall Gateway has a Stateful Packet Inspection (SPI) port filter that can be configured in the Conductor. Communications from remote devices behind remote Airwall Gateways are incoming connections. When the Airwall Gateway firewall is enabled, all incoming communications coming from remote Airwall Gateways are blocked by default, unless they are related to an already established session from a local device behind the local Airwall Gateway.
To enable port filtering on an Airwall Gateway:
- Select Airwalls, select an Airwall Gateway.
- Go to .
-
Select Edit Settings, and then select Enabled to view and configure the
Port filtering settings.
You can enable or disable port filtering, enable or disable Allow incoming pings (ICMP), and enable or disable SYN Flood Protection. Once configured, click Update Settings to save the settings.
- As needed, enable or disable Allow incoming pings (ICMP), and/or SYN Flood Protection.
- If needed, set custom traffic allowlisting rules to enable communication among specific devices. Select Add rule and select remote or local device and port ranges, and the protocol to use for communications.
- When you're finished setting the port filtering settings, select Update Settings to save your changes.