I have a 2830 and we have a database that we require certain ports opening for 4 different external IP addresses, to ensure its secure I dont want to just do the port forwarding I would then like to restrict it. I think I need to set up filters, one to block all access on those ports then to allow each IP firstly is that correct and secondly can I set up one rule that has multiple IP's is as we have 2 different ports and 4 different IP's which means 8 rules... would like it a bit neater... yes it is a bit OCD

Thanks in advance

Yes, I would use IP objects and IP groups for this too.

Follow this example for incoming SMTP from a trusted IP range, which should help to start you off:

Under IP Object, I set and Index for each of the email providers.

Friendly Name
WAN
IP Range

Under IP Group, I create an Index called "Incoming SMTP" Interface Any (handy for VPN intercompany mail) and add in the trusted indexees.

Under Service Type Object, I create and Index called SMTP

Name SMTP
Protocol TCP
Source Port = 1 - 65535
Destination Port = 25 - 25

Firewall >> Filter Setup

Index 2 "Default Data Filter"

Extend this as follows:

Index 2

Comments: Block SMTP

Direction: WAN > LAN
Source IP: Any
Destination IP: Any
Service Type: SMTP
Fragments Don't Care

Application
Filter: Block If No Further Match

Index 3

Comments: Trusted SMTP

Direction: WAN > LAN
Source IP: Incoming SMTP (choose the IP Group created earlier)
Destination IP: Any
Service Type: SMTP
Fragments Don't Care

Application
Filter: Pass Immediately

I think that's it. Seems long winded to start with, but it does make on-going changes much easier to handle in the future imo.

Regards, Neal

that is great and very clear, makes sense as to why to do it, I have done it, just needs testing.... THANKS!!!!