Manualshelf

Instruction manual

ManualsBrandsADTRAN ManualsComputer equipmentNetVanta 160
61626364656667686970
Section 4, User Interface Guide NetVanta 2000 Series System Manual
62 © 2002 ADTRAN, Inc. 61200361L1-1E
> POLICIES > ACCESS POLICIES: FROM DMZ
The From DMZ Policy Configuration page is displayed by clicking A
CCESS
P
OLICIES
: F
ROM
DMZ in the
menu list on the left side of the display window. From DMZ outbound policies apply to all data received by
the NetVanta 2000 series on the DMZ interface.
The From LAN Policy Configuration page displays a list of all current policies and provides an easy way
to organize them using the
R
ULE
ID field.
Before creating a new From DMZ outbound policy decide the appropriate priority for the policy. All
policies are displayed in descending order according to priority. Using the
A
DD
drop down menu
containing
BEFORE, AFTER, BEGINNING, and END options, configure the placement of the policy and
click the
A
DD
button. The Internet Access Policy Configuration page is displayed. A discussion of the
fields found on the Internet Access Policy Configuration page follows the figure.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > RULE ID
The R
ULE
ID number is a system-wide unique policy ID generated by the NetVanta 2000 series when a new
access policy is created.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > POLICY CLASS
The P
OLICY
C
LASS
field is populated automatically by the NetVanta 2000 series using the current policy
class (VPN, To/From LAN, To/From DMZ).
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > SOURCE/DESTINATION
The S
OURCE
IP/D
ESTINATION
IP displays the source and destination IP addresses used for the policy. All IP
records previously defined in the IP table will appear in this drop down menu. Select the predefined IP
record, or choose
O
THER
and define the source/destination IP using the IP and Mask Bits text boxes below
the drop down menu.
A
NY
option in this menu represents all valid IP addresses in the Internet address
space.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > DESTINATION PORT
The D
ESTINATION
P
ORT
drop down menu lists all definitions made in the services table. Choose one of the
predefined destination port entries, or choose
O
THER
and define the destination port or port range using the
text boxes below the drop down menu. To define a single port, enter the desired port value in the port range
start text box and leave the port range text box empty.
A
NY
option in this menu represents the complete port
range from 1 to 65535.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > PROTOCOL TYPE
The P
ROTOCOL
T
YPE
drop down menu selects the transport protocol for this access policy. If the desired
transport protocol is not listed in the menu, choose
O
THER
and enter the desired IP based transport protocol
number in the text box below the drop down menu.