HELP
TABLE OF CONTENTS

Firewall>Services

The Firewall>Services page allows you to create services and access rules based on IP protocols.

Services are used by the SonicWALL security appliance to configure network access rules for allowing or denying traffic to the network. The SonicWALL security appliance includes Default Services. Default Services are predefined services that are not editable. And you can also create Custom Services to configure firewall services to meet your specific business requirements.
Selecting All Services from View Style displays both Custom Services and Default Services.

Default Services

The Default Services view displays the SonicWALL default services in the Services table and Service Groups table that displays clusters of multiple default services as a single service object. You cannot delete or edit these predefined services.

The Services table displays the following attributes of the services that are currently defined:

Services that apply to common applications are grouped as Default Service Groups. These groups cannot be changed or deleted. Clicking on the + to the left of the Default Service Groups entry, displays all the individual Default Services included in the group. For example, the DNS (Name Service) entry has two services labeled DNS (Name Service) TCP for port 53 and DNS (Name Service) UDP for port 53. These multiple entries with the same name are grouped together, and are treated as a single service. Default Services Groups cannot be edited or deleted.

Custom Services

All custom services you create are listed in the Custom Services table. You can create a group of services by creating a Custom Service Group for easy policy enforcement.

Adding Custom Services

If a protocol is not listed in the Firewall>Default Services page, you can add it to the Custom Services table. All custom services you create are listed in the Custom Services table. You can group custom services by creating a Custom Services Group for easy policy enforcement. If a protocol is not listed in the Default Services table, you can add it to the Custom Services table by clicking Add.

  1. Enter the name of the service in the Name field.
  2. Select the type of IP protocol from the Protocol pull-down menu.
    Enter the Port Range or IP protocol Sub Type depending on your IP protocol selection:
  3. Click OK. The service appears in the Custom Services table.
    Click the Enable Logging checkbox to disable or enable the logging of the service activities.

Click the Enable Logging checkbox to disable or enable the logging of the service activities.

Editing Custom Services

Click the Notepad icon under Configure to edit the service in the Edit Service window, which includes the same configuration settings as the Add Service window.

Deleting Custom Services

Click the Trash can icon to delete an individual custom service. You can delete all custom services by clicking the Delete button.

Adding Custom Services Groups

You can add custom services and then create groups of services, including default services, to apply the same policies to them. For example, you can allow SMTP and POP3 traffic only during certain hours or days of the week by adding the two services as a Custom Service Group.

To create a Custom Service Group:

  1. Click Add Group. The Add Service Group window is displayed.
  2. Select the individual services from the list on the left. You can select multiple services by pressing the Ctrl key and clicking on the services.
  3. Click -> to add the services to the group.
  4. To remove services from the group, select the individual services from the list on the right. You can also select multiple services by pressing the Ctrl key and clicking on the service. Click <- to remove the services from the group.
  5. Click OK to add the group to the Custom Service Groups table.

Clicking+ on the left of a Custom Service Group name, expands the display to show all the individual Custom Services, Default Services, and Custom Services Groups included in the Custom Service Group entry.

Editing Custom Services Groups

Click the Notepad icon under Configure to edit the custom service group in the Edit Service Group window, which includes the same configuration settings as the Add Service Group window.

Deleting Custom Services Groups

Click the Trash can icon to delete the individual custom service group entry. You can delete all custom service groups by clicking the Delete button.

Help Table of Contents