Manualshelf

Instruction manual

ManualsBrandsADTRAN ManualsComputer equipmentNetVanta 160
61626364656667686970
NetVanta 2000 Series System Manual Section 4, User Interface Guide
61200361L1-1E © 2002 ADTRAN, Inc. 63
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > ACTION TYPE
The A
CTION
T
YPE
menu defines the policy as a Permit or Deny policy. Permit policies allow traffic matched
by the policy selectors to pass through and Deny policies blocks that traffic.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > TIME SCHEDULE USED
The T
IME
S
CHEDULE
U
SED
menu attaches a predefined time schedule to the Permit type access policy. This
activates the policy only in the time windows defined in the selected time schedule.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > ENABLE LOG
The E
NABLE
L
OG
radio button selectively enables or disables event logging for the access policy.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > ENABLE NAT
The E
NABLE
NAT radio button provides control to enable or disable NAT for the policy.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > NAT NAME
The NAT N
AME
drop down menu lists all entries from the NAT table. To manually define the NAT out pool
address here, select
O
THER
and enter the out pool IP address in the text boxes below the drop down menu.
> POLICIES > ACCESS POLICIES: FROM DMZ > CONFIGURATION > SECURITY
Since access policy and VPN policy selectors are created separately and act independently, the S
ECURITY
radio button configures the NetVanta 2000 series to check for the existence of a VPN policy for all the
network traffic governed by this access policy. If any traffic that would pass this access policy would be
sent in the clear, that is, not over an already defined VPN policy, an error will be generated to notify the
user.
Not selecting the S
ECURITY
option may allow insecure data transmission through the
NetVanta 2000 series.
If insecure data transmission is allowed because a VPN policy is removed after the
S
ECURITY
option has been performed on an access policy, no user notification will be
given. To ensure data security, verify each access policy after VPN changes are made.