Go-anywhere Pro Firewall

Go-anywhere Pro Firewall rules are a free service offered to all Ground Control Go-anywhere Pro subscribers

Go-anywhere Pro Firewall Traffic Rules reside at the Go-anywhere Pro satellite teleports and effectively block all traffic except what you provide Ground Control in a whitelist of allowed IP addresses. By default, ALL outgoing traffic from the Go-anywhere Pro terminal is open, and ALL incoming “initiated” traffic from the Internet is blocked (Note: incoming initiated traffic is only allowed if a Go-anywhere Pro SIM card is assigned a public IP address for an added cost of $25 per SIM each month, or is using IPSec VPN).

An effective firewall can slash unauthorized Go-anywhere Pro usage and save thousands of dollars by limiting what the Go-anywhere Pro terminal may connect with, like certain IP addresses and/or just email, or by any combination of rules possibilities in the table below. We highly recommend all of our subscribers use this free service. Simply ask your sales rep, or email help@groundcontrol.com with details on how you would like to use this service.

Go-anywhere Pro Firewall Rule Possibilities

  • Allow/deny any IP address or range of IP addresses for whitelist/blacklist.
  • Allow/deny email by SMTP and/or POP3 and/or IMAP and/or secure SMTP.
  • Allow/deny TCP, UDP, ICMP, SKIP, GRE, ESP, and IP protocols.
  • Allow/deny HTTP (web browsing) and/or HTTPS.
  • Allow/deny FTP (file transfer protocol).

All other traffic will be denied from the list of rules chosen above.

Creating Go-anywhere Pro Firewall Traffic Rules

The below screen shows how one or more traffic rules can be created for each individual IoT Pro SIM card.

 

BGAN_Firewall_Rules_Box

BGAN_Whitelist_Active

Multiple firewall rules will establish a more complete whitelist or blacklist. Above is a typical whitelist that allows limited traffic from the internet to the Go-anywhere Pro terminal. Whitelists are a common rule since they limit traffic to certain IP addresses, such as between a remote Go-anywhere Pro terminal IP address and a corporate server IP address.

Traffic Types that can be Configured:

  • Whitelist to allow listed IP traffic from the internet to the Go-anywhere Pro terminal.
  • Whitelist to allow listed IP traffic from the Go-anywhere Pro terminal to the internet.
  • Blacklist to deny listed IP traffic from the internet to the Go-anywhere Pro terminal.

To establish firewall rules for your Go-anywhere Pro SIM card or for more information about setting up traffic rules, please email your firewall whitelist, your Ground Control account number, and the Go-anywhere Pro SIM card number to help@groundcontrol.com.

Other Go-anywhere Pro Security Options

Ground Control also provides many other ways to secure your Go-anywhere Pro connection, such as IPSec VPN, co-location VPN, point-to-point VPN, and private MPLS networks. More information on Go-anywhere Pro Network Security.

Would you like to know more?

If you're exploring Go-anywhere Pro or IoT Pro connectivity for your project, we can most likely help. We provide Go-anywhere Pro airtime, hardware and networking services for customers across the world, and can help with one, two or all three elements.

Just call or email us, or complete the form, and we'll come back to you within one working day.
Contact Us

Contact Us

Please enable JavaScript in your browser to complete this form.
Name
Privacy Policy