ZyXEL Communications P-2302R Series User Manual

P-2302R Series User’s Guide

Chapter 14 Firewall

150

LAN-to-LAN/Prestige means the LAN to the Prestige LAN interface. This is always allowed, 
as this is how you manage the Prestige from your local computer.

WAN-to-LAN rules are Internet to your local network firewall rules. The default is to block 
all traffic from the Internet to your local network. 

How can you forward certain WAN to LAN traffic? You may allow traffic originating from 
the WAN to be forwarded to the LAN by:

• Configuring NAT port forwarding rules in the web configurator SUA Server screen or 

SMT NAT menus.

• Configuring One-to-One and Many-One-to-One NAT mapping rules in the web 

configurator Address Mapping screen or SMT NAT menus. 

• Configuring WAN or LAN & WAN access for services in the Remote Management 

screens or SMT menus. When you allow remote management from the WAN, you are 
actually configuring WAN-to-WAN/Prestige firewall rules. WAN-to-WAN/Prestige 
firewall rules are Internet to the Prestige WAN interface firewall rules. The default is to 
block all such traffic. When you decide what WAN-to-LAN packets to log, you are in 
fact deciding what WAN-to-LAN and WAN-to-WAN/Prestige packets to log. 

Forwarded WAN-to-LAN packets are not considered alerts. 

Click on the Services tab. The screen appears as shown next. Use this screen to enable service 
blocking, enter/delete/modify the services you want to block and the date/time you want to 
block them.