Netgear UTM9S – ProSECURE Unified Threat Management (UTM) Appliance with DSL and Wireless modules Manual De Referência
Firewall Protection
144
ProSecure Unified Threat Management (UTM) Appliance
Configure Other Firewall Features
You can configure global VLAN rules and attack checks, set session limits, and manage the
application level gateway (ALG) for SIP sessions.
application level gateway (ALG) for SIP sessions.
VLAN Rules
The VLAN Rules screen allows you to specify inter-VLAN firewall rules (that is, firewall rules
for VLANs that are created on the UTM) when inter-VLAN routing is not enabled (see
for VLANs that are created on the UTM) when inter-VLAN routing is not enabled (see
on page 98). For example, you can create one VLAN with IP
address 192.168.1.0 and a second VLAN with IP address 192.168.2.0. You can then specify
a VLAN firewall rule to allow access from all 192.168.1.* IP addresses to a web server with IP
address 192.168.2.10 on the second VLAN and block all other traffic between the two
VLANs.
a VLAN firewall rule to allow access from all 192.168.1.* IP addresses to a web server with IP
address 192.168.2.10 on the second VLAN and block all other traffic between the two
VLANs.
To create a VLAN rule:
1.
Select Network Security > Firewall > VLAN Rules. The VLAN Rules screen displays.
(The following figure shows one rule in the VLAN Services table as an example.)
(The following figure shows one rule in the VLAN Services table as an example.)
Figure 79.
2.
Under the VLAN Services table, click the Add table button. The Add VLAN-VLAN Service
screen displays:
screen displays:
Figure 80.