Configuring Firewall Settings104 WatchGuard Firebox X EdgeIncoming and outgoing trafficTraffic that does not start in your trusted or optional network isincoming traffic. Traffic that starts in your trusted or optional net-work and goes to the external network is outgoing traffic. In thedefault configuration, the Firebox stops all traffic from getting toyour trusted network.The default configuration of the Firebox X Edge allows thistraffic:- From the trusted network to the external network- From the trusted network to the optional network- From the optional network to the external networkThe default configuration of the Firebox denies this traffic:- From the external network to the trusted network- From the optional network to the trusted network- From the external network to the optional networkTraffic through VPN tunnelsWhen you create a Mobile User VPN tunnel from remote users, orwhen you create a Branch Office VPN tunnel to other offices, theFirebox X Edge automatically allows all traffic through that VPNtunnel. No other configuration is necessary after the VPN tunnel isset up.About This ChapterThe section “Configuring Outgoing Services” on page 111 shows youhow to control traffic to the external network from the trusted andoptional networks.The section “Services for the Optional Network” on page 116 showsyou how to control traffic between the trusted and optional net-works. This section also has examples of how to use the optionalnetwork.Other sections show how to use the Blocked Sites feature and otherfirewall options:• Responding to pings• Creating log messages for all outgoing traffic