Appendix: Examples : Basic IP Firewall Rule Examples
  
Basic IP Firewall Rule Examples
These examples show rules that you can create for the IP Firewall.
The IP firewall is configured to block Remote Desktop connections to the computer where DeviceLock Service is running:
1. In the console tree, expand DeviceLock Service, and then expand Protocols.
2. Under Protocols, right-click Basic IP Firewall, and then click Manage.
3. In the left pane of the Basic IP Firewall dialog box, under Users, click Add.
4. In the Select Users or Groups dialog box, in the Enter the object names to select box, type SYSTEM, and then click OK.
5. In the left pane of the Basic IP Firewall dialog box, under Users, select SYSTEM.
6. In the right pane of the Basic IP Firewall dialog box, under Rules, click Add.
7. In the Add Rule dialog box, do the following:
a) In the Name box, specify the name of the firewall rule, for example, Block RDP.
b) Under Protocol, select the TCP and UDP check boxes.
c) Under Type, click Deny.
d) Under Direction, select the Incoming check box.
e) In the Ports box, type 3389.
f) Click OK.
8. Click OK or Apply to apply the firewall rule settings and close the Basic IP Firewall dialog box.
The IP firewall is configured to allow incoming Post Office Protocol version 3 (POP3) connections for the specified user, while all other incoming connections to the computer where DeviceLock Service is running are blocked:
1. In the console tree, expand DeviceLock Service, and then expand Protocols.
2. Under Protocols, right-click Basic IP Firewall, and then click Manage.
3. In the left pane of the Basic IP Firewall dialog box, under Users, click Add.
4. In the Select Users or Groups dialog box, in the Enter the object names to select box, type Everyone, and then click OK.
5. In the left pane of the Basic IP Firewall dialog box, under Users, select Everyone.
6. In the right pane of the Basic IP Firewall dialog box, under Rules, click Add.
7. In the Add Rule dialog box, do the following:
a) In the Name box, specify the name of the firewall rule, for example, Deny ALL.
b) Under Protocol, select the TCP and UDP check boxes.
c) Under Type, click Deny.
d) Under Direction, select the Incoming check box.
e) In the Ports box, type 0-65535.
f) Click OK.
The rule you created is displayed under Rules in the right pane of the Basic IP Firewall dialog box. This rule will be used to block all remote connections to the client computer.
8. In the left pane of the Basic IP Firewall dialog box, under Users, click Add.
9. In the Select Users or Groups dialog box, in the Enter the object names to select box, type the name of the user who is allowed to use POP3, and then click OK.
10. In the left pane of the Basic IP Firewall dialog box, under Users, select the user who is allowed to use POP3.
11. In the right pane of the Basic IP Firewall dialog box, under Rules, click Add.
12. In the Add Rule dialog box, do the following:
a) In the Name box, specify the name of the firewall rule, for example, Allow POP3 connections.
b) Under Protocol, select the TCP check box.
c) Under Type, click Allow.
d) Under Direction, select the Incoming check box.
e) In the Ports box, type 110.
f) Click OK.
The rule you created is displayed under Rules in the right pane of the Basic IP Firewall dialog box. This rule will be used to unblock port 110 in the firewall to allow incoming POP3 connections for the specified user.
13. Click OK or Apply to apply the firewall rule settings and close the Basic IP Firewall dialog box.
The IP firewall is configured to block all TeamViewer connections to and from the computer where DeviceLock Service is running:
1. In the console tree, expand DeviceLock Service, and then expand Protocols.
2. Under Protocols, right-click Basic IP Firewall, and then click Manage.
3. In the left pane of the Basic IP Firewall dialog box, under Users, click Add.
4. In the Select Users or Groups dialog box, in the Enter the object names to select box, type Everyone, and then click OK.
5. In the left pane of the Basic IP Firewall dialog box, under Users, select Everyone.
6. In the right pane of the Basic IP Firewall dialog box, under Rules, click Add.
7. In the Add Rule dialog box, do the following:
a) In the Name box, specify the name of the firewall rule, for example, Deny TeamViewer.
b) Under Protocol, select the TCP check box.
c) Under Type, click Deny.
d) Under Direction, select the Outgoing check box.
e) In the Ports box, type 5938.
f) Click OK.
The rule you created is displayed under Rules in the right pane of the Basic IP Firewall dialog box. This rule will be used to block all TeamViewer connections to its servers.
8. Click OK or Apply to apply the firewall rule settings and close the Basic IP Firewall dialog box.