Configure Source Port
By default, policies apply to traffic from all source ports. You can include an option to limit policy scope based on the source port of the connection. Source port is configurable only for these types of policies that handle TCP or UDP traffic (and do not apply to other protocols):
- Policies that apply only to TCP, such as HTTPS, FTP, RDP
- Policies that apply only to UDP, such as SNMP, L2TP, IKE
- Policies that apply to both TCP and UDP, such as DNS, NTP
Source port is not configurable for any policy that includes a protocol other than TCP and UDP, such as Any, Ping, IPSec, GRE, and IGMP.
To apply a policy to traffic from specific source ports, in Fireware Web UI:
-
Select Firewall > Firewall Policies.
The Policies page opens. -
In the Policy Name column, click the name of the policy to edit.
The Edit Policy Properties dialog box opens. - Select the Advanced tab.
- On the Source Port tab, select Apply this policy to traffic from only the specified source ports.
- Click Add and add source ports or port ranges to the list.
When you configure a Source Port in any policy, the Policies list in the Web UI includes a SRC PORT column.
To apply a policy to traffic from specific source ports, in Policy Manager:
- In the Policy Name column, double-click the name of the policy to edit.
The Edit Policy Properties dialog box opens. - Select the Advanced tab.
- On the Source Port tab, select Apply this policy to traffic from only the specified source ports.
- Click Add and add source ports or port ranges to the list.
The Policies list in Policy Manager does not include a SRC PORT column.