ZyXEL Communications Corporation IX280P Manuel D’Utilisation
Chapter 15 The Firewall Screens
MAX-207HW2R User’s Guide
147
LAN-to-LAN/MAX-207HW2R means the LAN to the MAX-207HW2R LAN interface.
This is always allowed, as this is how you manage the MAX-207HW2R from your
local computer.
This is always allowed, as this is how you manage the MAX-207HW2R from your
local computer.
WAN-to-LAN rules are Internet to your local network firewall rules. The default is
to block all traffic from the Internet to your local network.
to block all traffic from the Internet to your local network.
How can you forward certain WAN to LAN traffic? You may allow traffic originating
from the WAN to be forwarded to the LAN by:
from the WAN to be forwarded to the LAN by:
• Configuring NAT port forwarding rules.
• Configuring WAN or LAN & WAN access for services in the Remote MGMT
• Configuring WAN or LAN & WAN access for services in the Remote MGMT
screens or SMT menus. When you allow remote management from the WAN,
you are actually configuring WAN-to-WAN/MAX-207HW2R firewall rules. WAN-
to-WAN/MAX-207HW2R firewall rules are Internet to the MAX-207HW2R WAN
interface firewall rules. The default is to block all such traffic. When you decide
what WAN-to-LAN packets to log, you are in fact deciding what WAN-to-LAN
and WAN-to-WAN/MAX-207HW2R packets to log.
Forwarded WAN-to-LAN packets are not considered alerts.
15.2.2 Triangle Route
When the firewall is on, your MAX-207HW2R acts as a secure gateway between
your LAN and the Internet. In an ideal network topology, all incoming and
outgoing network traffic passes through the MAX-207HW2R to protect your LAN
against attacks.
your LAN and the Internet. In an ideal network topology, all incoming and
outgoing network traffic passes through the MAX-207HW2R to protect your LAN
against attacks.
Figure 65 Ideal Firewall Setup