WinGate Forums

[leesoo]

Hi

How to disable port 80 (http) while allow access smtp & pop3 (port 25 & 110).
These setting not apply for all but for certain clients only. Can someone show me the details how to do it ? Client connection as below,

client -> login to our sambaserver (linux slackware) -> wingate (to get out)

- By creating new user in wingate and assumed them (so that able to access internet).

Thanks.

[jamesc]

Scenario:

All user assumed by ip address.
NAT connection method (LAN Clients Default Gateway pointing to WinGate).
LAN Network ID 192.168.0
Internet Users (Guests) need to be able to access port mappings.
No Users from 192.168.0 can have Guest access i.e. assumed access only

Organise your users into three groups:
Full NAT
HTTP NAT
Email NAT


GateKeeper --> Extended Networking Service --> Policies
Default Rights (System Policies) = Are ignored.

Add --> Full NAT, User may be assumed.
Ok back to Policies.

Add --> HTTP NAT, User may be assumed
Advanced tab:
Filter 1
This criterion is met if Server Port equals 80
Filter 2
This criterion is met if Server Port equals 443
Ok back to Policies.

Add --> Email NAT, User may be assumed
Advanced tab:
Filter 1
This criterion is met if Server Port equals 25
Filter 2
This criterion is met if Server Port equals 110
Ok back to Policies.

Add Guest, User may be unknown
Advanced tab:
Filter 1
This criterion is NOT met if Client IP Address begins with 192.168.0
Ok back to GateKeeper and test

[leesoo]

I have tested for Email NAT and followed steps that given but clients still able to access internet.

[jamesc]

I made a mistake - look at the bottom of my last post and see the NOT - I had missed that out when I first posted - please add the NOT to your Guest policy.

[jamesc]

I also presume you did the following step shown in bold:

GateKeeper --> Extended Networking Service --> Policies
Default Rights (System Policies) = Are ignored.

And you are using the NAT connection method only.