KeexyBox's wiki

User Tools

Site Tools

Trace: profiles_manage_firewall
profiles_manage_firewall

Table of Contents

KeexyBox - Profiles - Manage firewall

With KeexyBox you can create firewall rules to accept or drop protocols to the Internet. For example, it can block peer to peer.

You will need a minimum of technical knowledge of TCP/IP to create rules. The KeexyBox firewall only allows you to create rules for outgoing connections. Unlike common firewalls, the source will not be an IP address but a profile. So all users or devices using the connection profile will inherit the firewall rules defined for it.

When you make changes on firewall rules as decribed below, you will need to reload the profile.

List firewall rules

  1. Use your browser and connect to the KeexyBox Management Web interface.
  2. On left menu, go to Connection settings → Profiles.
  3. Identify in the list the profile you wish add rules.
  4. Click on .
  5. The Manage firewall rules page will open in a new window.

Add a firewall rule

There are two ways to add rules. Either you add one at the top or you add one after an existing one. More a rule is at top, top is the priority of the rule.

Add a rule at top

  1. At the top left of the Manage firewall rules page, click on .
  2. You will be redirected to a new form to create the rule.
  3. Edit the rule.
  4. When you are done, click on Save otherwise click on Cancel.

Add a rule after another one

  1. In the list of firewall rules, identify the rule after which you want to add the new one.
  2. In Action column click on .
  3. You will be redirected to a new form to create the rule.
  4. Edit the rule.
  5. When you are done, click on Save otherwise click on Cancel.

Modify a firewall rule

  1. Identify in the list the firewall rule you wish to modify.
  2. Click on Edit button.
  3. You will be redirected to the edit rule form.
  4. Edit the rule.
  5. When you are done, click on Save otherwise click on Cancel.

Edit a firewall rule

FieldOptionDescription
Source profileYou can't change it. It represents all the source IPs that will use the profile.
Destination typeChoose if the destination is a Network or single IP or an IP range.
Network or single IPDefine the IP address and the netmask.
IP rangeDefine the first and end IP addresses of the range.
Destination port rangeBy default the rule is defined to any destination ports. If you want to define ports, click on Set ports.
Set a single portif you want to set a single port, just define port number on field port.
Set a port rangeif you want to set a port range, define the lower port number on the field port and the greatest port number on the field last port.
buttonThis button allows you to delete the port range.
ProtocolTCPRule only works for TCP connections.
UDPRule only works for UDP connections.
TCP and UDPRule works for TCP and UDP connections.
ActionACCEPTAllow the connection to the defined destinations.
DROPDeny the connection to the defined destinations.
Rule enabledUncheck this box if you want the rule to be inactive otherwise check it.

Sort firewall rules

When you have created several rules you will certainly want to reorganize them and change the priorities between them.

There are two ways to change the order of the rules:

  • By drag and drop
  • By using Bulk actions

You can drag and drop only if you use a computer. If you want to move a rule from a touchscreen device, use bulk action to move the rule. In the column called position, there is a number that indicates the position of the rule. Lower is the number of the rule, higher is the priority of the rule. This number can be use to move rules between them.

Drag and drop a rule

  1. Identify in the list the firewall rule you wish to move.
  2. click and hold the click on the icon and drag and drop the rule above or below another one.

Bulk action

  1. Identify in the list the firewall rule you wish to move.
  2. Check the box to the left of the rule.
  3. At the bottom of the page, in the selection menu (select action), choose Move before position or Move after position.
  4. Then choose the number of the rule you wish to move the rule before or after.
  5. Click on Run to confirm the action.

Delete a firewall rule

  1. Identify in the list the rule you wish to delete.
  2. In Action column, click on trash button.
  3. You will get a message asking you to confirm the deletion. Answer yes.

Bulk actions

Bulk actions allows you to massively doing actions on rules.

In the list of firewall rules:

  1. Check boxes to the left of the rules.
  2. At the bottom of the page, on the selection menu (select action), choose one of the available actions.
  3. Click on Run to confirm the action.

The available actions are discribed below.

  • Disable: This action allows you to disable selected firewall rules.
  • Enable: This action allows you to enable selected firewall rules.
  • Copy to a profile: This action allows you to copy selected firewall rules to another profile.
  • Move before position: See Sort firewall rules.
  • Move after position: See Sort firewall rules.
  • Delete: This action allows you to delete selected firewall rules.

Reload the profile to reload firewall rules

In the list of firewall rules, click on . This action will reload all network rules of the profile.

About KeexyBox Project:

profiles_manage_firewall.txt · Last modified: 2020/09/25 09:32 by paul