I want to use the predefined templates for the firewall rules in Acronis Cloud Security. How do I do that?
Predefined templates will help you select the most commonly used firewall rules (e.x., HTTP access, remote access through RDP, Telnet or SSH).
To use the virtual firewall rules template select Templates in the Add Rule dialog box. The dialog box will display the template list with the most commonly used firewall rules placed at the top of the list and marked as Popular.
Select the desired scenario:
- Select the direction (inbound/outbound)
- Click Apply. The Add rule dialog box will show parameters applicable for the selected scenario.
Note: Be accurate when choosing the direction of the traffic you wish to allow or block. It is important to set the Direction parameter correctly; the assigned TCP/UDP port (local or remote) depends on the set direction. For example, if you wish to create the HTTP rule on a VM-web client, set the direction to Outbound and if you wish to create the same rule on a VM-web server, set the direction to Inbound. Acronis Cloud Security template will assign the HTTP port 80 to remote for VM-web client and local for VM-web server in order to set the TCP segment analysis properly.
For example, to see how it works for the HTTP rule allowing traffic on the VM-web client, select the template row with the name HTTP:
Please ensure you have selected the Outbound direction (Inbound is the default).
Click Apply. The Add Rule dialog box fields will be automatically populated with the selected rule template:
Adding rules for multiple VM(s):
Click OK. The corresponding message will appear after successfully adding multiple rules.
Adding Default Gateway Rule:
You have two options:
- Add rules to Virtual machines Global Rules – the rule being created will be added to Global-VM Rules list and will apply to all VMs set on the virtual firewall.
- Add rules to selected Virtual machines – the rule being created will be added to the rules lists only for those VMs that were chosen.
Click OK. The following rules with the characteristics shown below will be automatically created and then added to the necessary places as described above:
- Default gateway IP Rule
- Name: Default gateway IP Rule
- TypeOfRule: IP, Any
- Type: Any
- Action: Allow
- Protocol: Any
- Remote IPs: 10.16.101.198 (as it’s entered in the example given here)
- Default gateway ARP Rule
- Name: Default gateway ARP Rule
- TypeOfRule: ARP
- Type: Any
- Action: Allow
- Protocol: 0806
- Remote IPs: any
Editing a Rule
To edit a rule, select it in the list, then click Edit Rule from the menu options and edit the rule settings in the dialog box.
Removing a Rule
To remove a rule, select it in the list, then click Remove Rule from the menu options. The firewall rule will be removed from the list.