Configure a Firewall

Activate and configure a Firewall for each Network Interface Card (NIC) to better protect your servers from attacks. IONOS Cloud Firewalls can filter incoming (ingress), outgoing (egress), or bidirectional traffic. When configuring firewalls, define appropriate rules to filter traffic accordingly.

Note: A Firewall without set rules blocks all traffic.

Activating a Firewall

1. In the Workspace, select a Virtual Machine (VM) with a NIC.

2. From the Inspector, open the Network tab.

3. Open the properties of the NIC for which you wish to set up a Firewall.

4. To activate the Firewall,choose between Ingress / Egress / Bidirectional

Activating the Firewall without additional rules will block all incoming traffic. You can now add exceptions for ports and protocols by clicking Manage Rules.

Managing Firewall Rules

To create rules, define a new rule by clicking Create Firewall Rule. Additionally, you may add an existing set of rules by clicking Rules from Template. As a third option, you may import an existing rule set by clicking Clone Rules from other NIC.

Modify the values of the Firewall rule:

Name: Enter a name for the rule.
Source MAC: Enter the MAC address to be passed through by the firewall.
Source IP: Enter the IP address to be passed through by the firewall.
Target IP: If you use virtual IP addresses on the same network interface, you can enter them here to allow access.
Port Range Start: Set the first port of an entire port range.
Port Range End: Set the last port of a port range, or enter the port from Port Range Start if you only want this port to be allowed.
ICMP Type: Enter the ICMP Type to be allowed. Example: 0 or 8 for echo requests (ping) or 30 for traceroutes.
ICMP Code: Enter the ICMP Code to be allowed. Example: 0 for echo requests.
IP Version: Select a version from the drop-down list. By default, it is Auto.

Click Save to confirm your Firewall setup.

PreviousConfigure a Network NextManage IP Failover

Last updated 2 years ago

Was this helpful?