Chapter 5: Configuring the CopperJet
Page
34
You must enable Security before you can add security functionality like Firewall,
NAT or filters.
In the Security State section:
Click on the Security Enabled radio button and select Change State to update the
Security State section. The overall Security is now enabled.
5.6.2 Configuring Security Interfaces
Before Security options can be configured, there must be at least 2 Security
interfaces defined and configured. Security interfaces represent the logical
connections to and from the CopperJet. These interfaces are used to enable the
security on these connections.
There are three different types of security interfaces available
•
Internal: usually the LAN connection
•
External: usually the WAN connection
•
DMZ: usually a second LAN connection or IP subnet
The security interfaces are directly linked to the LAN and WAN connections. Be
sure that the necessary LAN and WAN connections are configured correctly. The
security interfaces can be assigned to these connections.
Important: When a WAN connection is already configured with NAT
enabled, both the internal and external Security Interfaces are
automatically added and configured. These Security Interfaces can be
used to enable the other security options.
To add a Security Interface, go to the Configuration menu and select Security.
The Security Interface Configuration page is displayed. Select Add Interface at
the Security Interface section. The Firewall: Add interface page is displayed.
Select the proper WAN or LAN connection from the Name section.
•
The Ethernet LAN connection is represented as ethernet-0.
•
The USB LAN connection is represented as ethernet-1.
•
WAN connections are represented as ppp-0, rfc1483-0, or ipoa-0.
Select the proper Interface type. Usually the LAN connections ethernet-0 or
ethernet-1 are internal. The WAN connections are usually external.
Click on Apply to add the security interface.
