Changing the Default Policy

After enabling the firewall, the default policy is to accept traffic from/to all IP addresses. This means only IP addresses discarded by a specific rule will NOT be permitted to access the PXE or receive any data from the PXE.

You can change the default policy to Drop or Reject, in which case traffic to/from all IP addresses is discarded except the IP addresses accepted by a specific rule.

Default policies for inbound and outbound traffic can be different.

  1. Choose Device Settings > Security > IP Access Control. The Configure IP Access Control Settings dialog appears.
  2. To determine the default policy for IPv4 addresses:
    1. Click the IPv4 tab if necessary.
    2. Ensure the Enable IPv4 Access Control checkbox is selected.
    3. Locate the Default Policy field in the Inbound Rules section.
    4. The default policy is shown in the Default Policy field. To change it, select a different policy from the drop-down list.
      • Accept: Accepts traffic from all IPv4 addresses.
      • Drop: Discards traffic from all IPv4 addresses, without sending any failure notification to the source host.
      • Reject: Discards traffic from all IPv4 addresses, and an ICMP message is sent to the source host for failure notification.
  3. To determine the default policy for IPv6 addresses:
    1. Click the IPv6 tab.
    2. Ensure the Enable IPv6 Access Control checkbox is selected.
    3. Locate the Default Policy field in the Inbound Rules section.
    4. The default policy is shown in the Default Policy field. To change it, select a different policy from the drop-down list.
      • Accept: Accepts traffic from all IPv6 addresses.
      • Drop: Discards traffic from all IPv6 addresses, without sending any failure notification to the source host.
      • Reject: Discards traffic from all IPv6 addresses, and an ICMP message is sent to the source host for failure notification.
  4. Click OK. The new default policy is applied.

See Also

Configuring the Firewall

Enabling the Firewall

Creating Firewall Rules

Editing Firewall Rules

Sorting Firewall Rules

Deleting Firewall Rules