This article contains steps to selectively lock down all network access to a host system using Deep Security firewall rules.
You can lock down all network access to a host system by creating firewall rules to allow access only to the defined IP list and Port list. Whether the IPS Filter is present or not, the IPs have to be implemented in the Firewall policy to block the access.To allow access to selected Hosts/IPs, create a Firewall Rule with the following minimum settings:
Additional configuration may be necessary for the Firewall Rule to reflect additional allow policy requirements. This include: a specific Source IP address; or a Source Port range.
By default, all other types of network access will be locked, with the exception of any configured ALLOW Firewall Rules. IP, MAC and Port lists may be used to group series of identifying source and destination host systems across multiple Firewall Rules.