Avaya FireWall-1 Manual do Utilizador descarregar pdf (Página 47)

Configuring a Firewall on a Router

117384-D Rev 00

3-7

Enabling the Firewall on Router Interfaces

After you have created a firewall on the router, use the BCC to enable it on one or

more interfaces. For each interface on which you want to enable the firewall, do

the following:

Navigate to the IP interface-specific prompt.

Add a firewall to the interface.

Optionally, specify a firewall name.

Optionally, set the policy index.

Navigating to the Prompt for the IP Interface

To navigate to the IP interface on which you want to enable the firewall, first

navigate to the prompt for the slot/connector on which you have configured the IP

interface (for example,

box; eth 2/1

). Then enter:

ip address

<ip_address>

mask

<address_mask>

ip_address

is the IP address you have assigned to the interface.

address_mask

is the mask associated with the IP address.

The prompt for the IP interface appears.

Note:

Once the firewall is protecting your router, and you put firewall

protection on a new interface, the new interface will use the default security

policy supplied by Check Point, which prevents the new interface from

communicating with the router.

You can download your customized security policy to the new interface using

the Check Point FireWall-1 command line interface (CLI). You can also use

the Check Point FireWall-1 graphical user interface (GUI) to download the

security policy. The GUI, however, downloads the same security policy to all

interfaces. For further information and instructions, see your Check Point

documentation.

1 2 ... 42 43 44 45 46 47 48 49 50 51 52 ... 67 68

Sem comentários

Avaya FireWall-1 Manual do Utilizador Página 47