MANUAL
21846
AILONET 100
6.6.2002
AILONET USER MANUAL
Done
Copyright
Patria Ailon Oy 2002. All rights reserved.
23/24
2.3.10 Firewall
The user defines with the firewall, what traffic is allowed from Ethernet, 802.11b or other network to
Ailonet.
The traffic running out of Ailonet does not go through the firewall!
In addition, common settings for other network interfaces are found under the option
Others
. There
are three profiles for each interface, the settings of which can be changed. The profiles are
All De-
nied
,
WWW Accepted
and
Common Services
. With an external interface, any profile can be cho-
sen, with other interfaces the option
All Denied
doesn't show up on screen. The external interface
can be seen on the firewall settings front page in boldface.
The profile names are:
•
All Denied
•
WWW Accepted
•
Common Services
The
All Denied
option inhibits with its basic setting all traffic through the interface to Ailonet.
WWW Accepted
allows only http, https, ftp and ftp-data traffic.
The
Common Services
option allows the use of all protocols' ports supported by Ailonet.
DO NOT CHANGE THE PROFILE UNLESS YOU KNOW EXACTLY WHAT YOU ARE DOING!
2.3.10.1 Interfaces
The profiles of different interfaces can be changed through the
Interfaces
page. All traffic can only
be inhibited from an external interface or by modifying the profile of internal interfaces. The profiles
for different interfaces are chosen from pull-down menus and brought to use by clicking the
Modify
button. If the
Reset
button is clicked, the firewall settings of different Ailonet interfaces return to the
settings that were valid before changes were made to the page. If the option
Off
is chosen, all traf-
fic to Ailonet is allowed.
2.3.10.2 Advanced
The modification of profiles is done from the
Advanced
subpage. On this page, you choose the in-
terface and the profile connected to it, that you want to modify. By clicking
Modify
you get to the
page where you can modify the profile.
On the Modify page, you can see a list of previously defined ports and protocols, to which you can
directly define their status.
If the option
Off
is chosen, the port in question is not open, in which case the traffic coming through
it will be denied.
With the option
On
you can either choose
All
, in which case all traffic through the port is allowed or
the
Listed
, in which case a connection can be established from the IP-addresses in the box on the
right. The IP-address has the form 192.148.166.221. Instead of an IP-address, a subnetwork can
