Firewall Email

  • 1
  • Question
  • Updated 3 years ago

I am creating a new UserProfile for my SSID Guest with DHCP Aerohive (I don't know the real name).
I have a problem with my firewalls rules :

I authorized the protocols HTTP,HTTPS and HTTP-8080. Internet works properly on smartphone and laptop.
I authorize the protocols POP3, IMAP and SMTP for people retrieve mails on samrtphone but it don't work.

I don't understand witch protocols I foreget.

Screenshot :

Photo of Dubois


  • 7 Posts
  • 0 Reply Likes

Posted 3 years ago

  • 1
Photo of Will Rhodes

Will Rhodes

  • 45 Posts
  • 9 Reply Likes
The issue is the rule set is blocking your guest email traffic.

Without changing the rules as they are written, the 3 "Deny" rules should be moved to the bottom of the list. This isn't perfect though because it could allow guests to access internal resources on those protocols through the use of "any" source to "any" destination.

One way you could do it would be to write the rules to say:

Drop Guests (use subnet or userprofile to identify) to your specific internal LAN range
Allow Guests to internet on the approved protocols

Guests----Internal LAN----any--------------drop
Guests ----any---------------web-------------allow
Guests-----any--------------email ----------allow

Just be sure that the first Drop rule doesn't block their access to the Guest's default gateway.