Establishing security
186 Avaya VPNmanager Configuration Guide Release 3.7
Figure 60: Policy Manager, Packet Filtering/QoS
Clicking on the Edit or Add buttons launches a Packet Filtering Policy Wizard that guides you
through configuration of the desired packet filtering.
Advanced
The Advanced tab accesses specific types of filters that are activated through checkboxes.
Permit/Deny non-VPN traffic Radio Buttons
The Radio Buttons at the top of the Packet Filter Rule-Advanced screen are set according to
your security policy. They include:
●
Permit all non-VPN traffic - When checked, all non VPN traffic is allowed to pass through
the VSU.
●
Deny all IP non-VPN traffic - When checked, all non-IP traffic is prevented from passing
through the VSU. All non-VPN IP traffic is dropped except for the following: ICMP, IGMP,
GGP, EGP, IGP, DGP, EIGRP, and OSPF.
Note:
Note:
This mode should be used when the VSU dedicated to VPN traffic and is the only
device between the private and the public networks.
●
Deny all non-VPN traffic - When checked, all non-VPN traffic is prevented from passing
through the VSU. This mode blocks non-IP traffic and non-VPN traffic including broadcast
traffic, IP-multicast traffic and other traffic containing routing information.
Summary of Contents for 3.7
Page 1: ...VPNmanager Configuration Guide Release 3 7 670 100 600 Issue 4 May 2005...
Page 4: ......
Page 20: ...Preface 20 Avaya VPNmanager Configuration Guide Release 3 7...
Page 32: ...Overview of implementation 32 Avaya VPNmanager Configuration Guide Release 3 7...
Page 53: ...Preferences Issue 4 May 2005 53 Figure 16 Tunnel End Point Policy...
Page 54: ...Using VPNmanager 54 Avaya VPNmanager Configuration Guide Release 3 7...
Page 244: ...Using advanced features 244 Avaya VPNmanager Configuration Guide Release 3 7...
Page 292: ...Upgrading firmware and licenses 292 Avaya VPNmanager Configuration Guide Release 3 7...