Best Method of Denying Traffic from Specific LAN IPs to Secondary(Failover) WAN
Good evening Community,
So here's the situation: We have a site setup to failover to a service with a monthly cap on data usage on X1.
Concern exists that backup appliances on site could cause the site to hit that cap in short order during failover, rendering it useless as a backup.
Needless to say the goal is utilizing the best method to block traffic from those specific devices to the failover WAN port in the event of a failover, if possible.
Now, full disclosure, I have limited experience/knowledge when it comes to Sonicwalls as I've really only been working with them for a couple years. So please pardon any naivety on my part here.
Am I mistaken in thinking that this can be accomplished by setting up an Address Group containing the addresses of the devices we want to deny traffic from and then creating an Access rule set to deny traffic from that Address Group to the failover WAN port?... or am I missing/forgetting something critical?