Smarsh Hosted Services provides you with the Firewall for your Cloud Servers private network protection. With use of the Firewall rules, you can easily control and manage all incoming and outgoing traffic through CONTROL PANEL.
- You need to take into account Windows Firewall as well as CONTROL PANEL Firewall rules. The rules you create in CONTROL PANEL do not populate to Windows Firewall and have to be recreated there in order to work. You may think of CONTROL PANEL Firewall as of an outer Firewall so make sure that all the required ports are open in CONTROL PANEL before you open them in Windows Firewall, otherwise such connections will not go through.
- To enhance security, you may need to enable Windows Firewall manually on the server by setting
itsstate to Not Configured. Read the Knowledge Base article on How Can I Manage Windows Firewall on My Default Cloud Server Installation for more information.
Log in to CONTROL PANEL and navigate to Services > Cloud Server > Firewall.
- The number of rules is unlimited.
- There are default firewall rules created automatically for each Cloud Server depending on the Operation System and Application Image parameters selected during their setup. They are tied on the server name they apply to, protocols and ports:
- Allow any outbound traffic (for all Cloud Servers)
Tcp- any - 80 (Windows Servers with IIS)
Tcp- any - 1433 (Windows Servers with MSSQL)
Tcp- any - 22 (Linux Servers)
- To establish connection from your machine to Cloud Server, click on the Remote Desktop icon which is available for Windows Server and select the port 3389. It will automatically create the rule:
Allow access to RDP to Cloud.Server.Public.IPaddress
- Each rule has the following settings:
- Rule name: You can give the rule a name when you create it.
- Source: The source of connections. Your Cloud Server network is the source of outgoing traffic.
- Destination: The destination of connections. Your Cloud Server network is the destination of
- Protocol: Type of protocol. You can select a specific protocol or Any to embrace all protocols.
- Action: Allow or Deny. This is the description of what the rule actually does to the specified ports and destination.
- State: Enabled, Disabled, Creating, Updating or Deleting. Updating the rule settings normally takes no more than ten minutes. Enabled rules can be disabled, deleted and re-ordered. Disabled rules can be enabled and re-ordered. No action is available for the rule in the processing (Creating, Updating or Deleting) state. You can enable or disable the rule by selecting a
check-boxlocated next to its name and clicking Enable or Disable at the bottom of the page.
Note: If the rule is Disabled or processing (Creating, Updating or Deleting), it is grayed out. You can click Refresh at the top of the page to view the changes in the State.
- Select a check-box next to the rule to manage it.
- Enable: This option is only available for disabled rules.
- Disable: This option is only available for enabled rules.
- Delete: If you delete the rule you cannot restore it.
- Reorder Rules: Click this button to be able to click the up and down-arrows to change the rules position. You can drag the rules up and down in this mode. The upper rule has the major priority.
Creating a New Rule
- To create a new rule click Add New Rule at the top of the page and specify the rule attributes.
- You can have the rule running right after it is created by selecting Yes in the Enabled section as well as you can enable it later by selecting No.
- You have the following options for Protocol:
Note: Alternate Protocols can be used. Read the Knowledge Base article on How Do I Use Alternate Protocols To Create A New Rule For Cloud Server? for more information.
- When you select TCP, UDP, TCP/UDP, the fields for ports will appear:
- You have the following options for both Source and Destination:
- Additional fields will appear for Host:
Note: During the new rule setup you will see the Processing status for several seconds.
- With the following configuration you can select your Cloud Server from the drop-down list:
Editing an Existing Rule
- You can change the rule properties if you click on the display name of
Note: You can edit Traffic Direction only when the rule is created. You cannot edit Traffic Direction of any existing rules.