Unified Services Router
User Manual
65
5.3.1 Firewall Rule Configuration Examples
Example 1: Allow inbound HTTP traffic to the DMZ
Situation: You host a public web server on your local DMZ network. You want to
allow inbound HTTP requests from any outside IP address to the IP address of your
web server at any time of day.
Solution: Create an inbound rule as follows.
Parameter
Value
From Zone
Insecure (WAN1/WAN2)
To Zone
Public (DMZ)
Service
HTTP
Action
ALLOW always
Send to Local Server (DNAT IP)
192.168.5.2 (web server IP address)
Destination Users
Any
Log
Never
Example 2: Allow videoconferencing from range of outside IP addresses
Situation: You want to allow incoming videoconferencing to be initiated from a
restricted range of outside IP addresses (132.177.88.2 - 132.177.88.254), from a
branch office.
Solution: Create an inbound rule as follows. In the example, CUSeeMe (the video
conference service used) connections are allowed only from a specified range of
external IP addresses.
Parameter
Value
From Zone
Insecure (WAN1/WAN2)
To Zone
Secure (LAN)
Service
CU-SEEME:UDP
Action
ALLOW always
Send to Local Server (DNAT IP)
192.168.10.11
Destination Users
Address Range
From
132.177.88.2
To
134.177.88.254
Enable Port Forwarding
Yes (enabled)
Example 3: Multi-NAT configuration
Situation: You want to configure multi-NAT to support multiple public IP
addresses on one WAN port interface.
Solution: Create an inbound rule that configures the firewall to host an additional
public IP address. Associate this address with a web server on the DMZ. If you
Содержание DSR-1000N
Страница 2: ...User Manual Unified Services Router D Link Corporation Copyright 2010 http www dlink com ...
Страница 28: ...Unified Services Router User Manual 26 Figure 11 Manual WAN configuration ...
Страница 60: ......
Страница 80: ...Unified Services Router User Manual 78 Figure 48 Protecting the router and LAN from internet attacks ...
Страница 90: ......
Страница 102: ...Unified Services Router User Manual 100 Figure 64 SSL VPN Portal configuration ...
Страница 123: ...Unified Services Router User Manual 121 Figure 82 Device Status display ...
Страница 125: ...Unified Services Router User Manual 123 Figure 84 Resource Utilization statistics ...
Страница 126: ...Unified Services Router User Manual 124 ...
Страница 127: ...Unified Services Router User Manual 125 Figure 85 Resource Utilization data continued ...
Страница 131: ...Unified Services Router User Manual 129 Figure 89 List of current Active Firewall Sessions ...
Страница 140: ......
Страница 144: ......