Manualshelf

User guide

ManualsBrandsAllied Telesis ManualsComputer equipmentAT-iMG634 - R2
351352353354355356357358359360
Security Security support on AT-iMG Models
iMG/RG Software Reference Manual (IPNetwork Functions)
4-58
Intrusion Detection Settings (IDS) component; implements security measures to protect your network from
suspicious hosts
Security component; manages the Security package, and enables security features such as management sta-
tions, triggers, security applications, session tracking and application services
4.2.2 Security support on AT-iMG Models
The Security module is the main module in the AT-iMG Models that acts as a server to the other two security
modules; Firewall and NAT, forming the Security System (see Figure 7).
This component allows you to:
enable/disable all modules in the Security package (including the child modules; NAT and Firewal, that
cannot otherwise be configured)
add IP interfaces to the Security package to create security interfaces that are used to configure the NAT
and Firewall child modules
configure triggers to allow applications to open secondary port sessions
configure IDSs (Intrusion Detection Settings)
configure management stations to allow a specific host (or range of hosts) remote access to the device
without having to go through NAT and/or Firewall
configure application services; to restrict access to a specific application service on a specific IP interface
once the interfaces have been defined as security interface
configure logging: (On FIber D,E Modular and ADSL A,B,C models only) to track intrusion events, block-
ing-events and session-events.
FIGURE 4-1 Security modules on AT-iMG Models
4.2.3 Security interfaces
A security interface is an existing IP interface that has been defined as either as Internal, External and DMZ
(see Figure To Be Supplied)
Firewall module NAT module
Security module