Table of Contents
KeexyBox - Profiles - Manage firewall
With KeexyBox you can create firewall rules to accept or drop protocols to the Internet. For example, it can block peer to peer.
You will need a minimum of technical knowledge of TCP/IP to create rules. The KeexyBox firewall only allows you to create rules for outgoing connections. Unlike common firewalls, the source will not be an IP address but a profile. So all users or devices using the connection profile will inherit the firewall rules defined for it.
When you make changes on firewall rules as decribed below, you will need to reload the profile.
List firewall rules
- Use your browser and connect to the KeexyBox Management Web interface.
- On left menu, go to
Connection settings → Profiles
. - Identify in the list the profile you wish add rules.
- Click on .
- The
Manage firewall rules
page will open in a new window.
Add a firewall rule
There are two ways to add rules. Either you add one at the top or you add one after an existing one. More a rule is at top, top is the priority of the rule.
Add a rule at top
- At the top left of the
Manage firewall rules
page, click on . - You will be redirected to a new form to create the rule.
- When you are done, click on
Save
otherwise click onCancel
.
Add a rule after another one
- In the list of firewall rules, identify the rule after which you want to add the new one.
- In
Action
column click on . - You will be redirected to a new form to create the rule.
- When you are done, click on
Save
otherwise click onCancel
.
Modify a firewall rule
- Identify in the list the firewall rule you wish to modify.
- Click on
Edit
button. - You will be redirected to the edit rule form.
- When you are done, click on
Save
otherwise click onCancel
.
Edit a firewall rule
Field | Option | Description |
---|---|---|
Source profile | You can't change it. It represents all the source IPs that will use the profile. | |
Destination type | Choose if the destination is a Network or single IP or an IP range . |
|
Network or single IP | Define the IP address and the netmask. | |
IP range | Define the first and end IP addresses of the range. | |
Destination port range | By default the rule is defined to any destination ports. If you want to define ports, click on Set ports . |
|
Set a single port | if you want to set a single port, just define port number on field port . |
|
Set a port range | if you want to set a port range, define the lower port number on the field port and the greatest port number on the field last port . |
|
button | This button allows you to delete the port range. | |
Protocol | TCP | Rule only works for TCP connections. |
UDP | Rule only works for UDP connections. | |
TCP and UDP | Rule works for TCP and UDP connections. | |
Action | ACCEPT | Allow the connection to the defined destinations. |
DROP | Deny the connection to the defined destinations. | |
Rule enabled | Uncheck this box if you want the rule to be inactive otherwise check it. |
Sort firewall rules
When you have created several rules you will certainly want to reorganize them and change the priorities between them.
There are two ways to change the order of the rules:
- By drag and drop
- By using Bulk actions
You can drag and drop only if you use a computer. If you want to move a rule from a touchscreen device, use bulk action to move the rule.
In the column called position
, there is a number that indicates the position of the rule. Lower is the number of the rule, higher is the priority of the rule. This number can be use to move rules between them.
Drag and drop a rule
- Identify in the list the firewall rule you wish to move.
- click and hold the click on the icon and drag and drop the rule above or below another one.
Bulk action
- Identify in the list the firewall rule you wish to move.
- Check the box to the left of the rule.
- At the bottom of the page, in the selection menu
(select action)
, chooseMove before position
orMove after position
. - Then choose the number of the rule you wish to move the rule before or after.
- Click on
Run
to confirm the action.
Delete a firewall rule
- Identify in the list the rule you wish to delete.
- In
Action
column, click on trash button. - You will get a message asking you to confirm the deletion. Answer
yes
.
Bulk actions
Bulk actions allows you to massively doing actions on rules.
In the list of firewall rules:
- Check boxes to the left of the rules.
- At the bottom of the page, on the selection menu
(select action)
, choose one of the available actions. - Click on
Run
to confirm the action.
The available actions are discribed below.
Disable
: This action allows you to disable selected firewall rules.Enable
: This action allows you to enable selected firewall rules.Copy to a profile
: This action allows you to copy selected firewall rules to another profile.Move before position
: See Sort firewall rules.Move after position
: See Sort firewall rules.Delete
: This action allows you to delete selected firewall rules.