SonicOS: Difference Between the Deny and Discard Actions in Firewall Access Rules on SonicOS Enhanced Firmware (SW3738)

Return
  • Title

    SonicOS: Difference Between the Deny and Discard Actions in Firewall Access Rules on SonicOS Enhanced Firmware
  • Resolution

    When creating new access rules on the Firewall > Access Rules page in SonicOS Enhanced, traffic may be blocked by specifying either the "deny" or "discard" action. Choosing the deny action means that a reset packet will be sent to the machine requesting the blocked traffic. Choosing the discard action means that no reset packet will be sent in response to blocked traffic. Instead, the firewall will act as though it were in stealth mode for the access rule in question. It is also possible to configure the SonicWALL to discard all traffic that is not accepted. The SonicWall can be configured to operate in stealth mode by selecting the option on the Firewall > Advanced page.

  • Key Words

    3738


Feedback submitted.

Did this article help?

[Select Rating]

Thank you for your rating!

Close

Request or Create a KB Article »

Product(s):
SonicWALL SuperMassive 9000 Series
9600, 9400, 9200
SonicWALL SuperMassive E10000 Series
10800, 10400, 10200
SonicWALL NSA Series
6600, 5600, 4600, 4500, 3600, 3500, 2600, 250MW, 250M, 2400MX, 2400, 240, 220
SonicWALL E-Class NSA Series
E8510, E8500, E7500, E6500, E5500
SonicWALL TZ Series
215W, 215, 210W, 210, 205W, 205, 200W, 200, 105W, 105, 100W, 100

Topic(s):
Technical Solutions

Article History:
Created on: 10/30/2007
Last Update on: 5/13/2014