Table of Contents
Advertisement
The rules perform the following functions:
1. Allow Internal machines to access to the Web and FTP sites.
2. Allow everyone on the Internet to access the Web server through HTTP.
3. Except for the preceding rules, drop all other traffic.
Note
Both Security Policy rules and NAT rules are matched in-order.
Note
NAT happens after the traffic is scanned by the security policy. The
security policy needs to be defined in terms of how the firewall will detect
the traffic before NAT is applied. Therefore, you must create an external
version of the WWW server object and use it in the rulebase.
Configuring NAT Rules
The NAT Rules would look in the GUI.
Figure 34 NAT Rules
The rules perform the following functions:
1. If a connection is initiated to the WWW server's "legal" IP address (e.g.
2. Users in the Internal_Network_Range (e.g. all IPs in 192.168.1.0 except
Nokia IP71 User Guide
204.32.38.10), it will be translated to the server's "real" IP address (e.g.
192.168.1.10) through a static translation. Replies to this traffic will
automatically be translated.
for 192.168.1.1) will be hidden behind the Firewall's external interface
Configuring Using the GUI
81
Advertisement
Table of Contents
