NBB-800
User Manual for NRSW version 4.5.0.100
5.5. FIREWALL
5.5.1. Administration
NetModule routers use Linux’s netfilter/iptables firewall framework
(see
for more information) which supports stateful inspection, that is,
granting the same permissions for inherited connections within an IP session (e.g. FTP which builds
up a control and data connection).
The administration page can be used to enable and disable firewalling. When turning it on, a shortcut
can be used to generate a predefined set of rules which allow administration (over HTTP, HTTPS, SSH
or TELNET) by default but block any other packets coming from the WAN interface.
5.5.2. Adress/Port Groups
This menu can be used to form address or port groups which can be later used for firewall rules in
order to reduce the number of rules. If address or port groups have been referenced, packets will
match if one of the configured entities apply to the packet.
Address Groups
Port Groups
NetModule Router Simulator
Hostname NB1600
Software Version 4.4.0.103
© 2004-2020, NetModule AG
Firewall
Administration
Address / Port Groups
Filtering Rules
NAPT
Masquerading
Inbound Rules
Outbound Rules
Firewall Address Groups
Description
Addresses
LAN1 Subnet
192.168.1.0/24
HOME
INTERFACES
ROUTING
FIREWALL
VPN
SERVICES
SYSTEM
LOGOUT
Figure 5.24.: Firewall Groups
88