Chapter 25 Security Policy
UAG Series User’s Guide
293
Figure 207
Configuration > Security Policy > Policy Control
The following table describes the labels in this screen.
Table 130
Configuration > Security Policy > Policy Control
LABEL
DESCRIPTION
General Settings
Enable Policy
Control
Select this check box to activate security policy control. The UAG performs access control
when this is activated.
IPv4
Configuration
Allow
Asymmetrical
Route
If an alternate gateway on the LAN has an IP address in the same subnet as the UAG’s LAN
IP address, return traffic may not go through the UAG. This is called an asymmetrical or
“triangle” route. This causes the UAG to reset the connection, as the connection has not
been acknowledged.
Select this check box to have the UAG permit the use of asymmetrical route topology on
the network (not reset the connection).
Note: Allowing asymmetrical routes may let traffic from the WAN go directly to the LAN
without passing through the UAG. A better solution is to use virtual interfaces to put the
UAG and the backup gateway on separate subnets.
Add
Click this to create a new entry. Select an entry and click
Add
to create a new entry after
the selected entry.
Edit
Double-click an entry or select it and click
Edit
to open a screen where you can modify the
entry’s settings.
Remove
To remove an entry, select it and click
Remove
. The UAG confirms you want to remove it
before doing so.
Activate
To turn on an entry, select it and click
Activate
.