Installation guide

Chapter 6 Defining Layer 2 Firewalls

Defining Capture Interfaces

Capture Interfaces listen to traffic that is not routed through the Layer 2 Firewall. You can have

as many Capture Interfaces as there are available physical ports on the Layer 2 Firewall (there

are no license restrictions regarding this interface type).

External equipment must be set up to mirror traffic to the Capture Interface. You can connect a

Capture Interface to a switch SPAN port. For more information, see Capture Interfaces

(page 19).

 To define a Capture Interface

1. Right-click and select New Physical Interface. The Physical Interface Properties dialog

opens.

2. Select the Interface ID.

3. Select Capture Interface as the Type.

4. (Optional) Select a TCP Reset Interface for traffic picked up through this Capture Interface.

5. If your configuration requires you to change the Logical Interface from Default_Eth, select

the Logical Interface in one of the following ways:

•Select an existing Logical Interface from the list.

•Select Other and browse to another Logical Interface.

•Select New to create a new Logical Interface.

6. Leave Inspect Unspecified VLANs selected if you want the Layer 2 Firewall engine to

inspect traffic also from VLANs that are not included in the engine’s interface configuration.

7. Click OK.

Repeat these steps to define any additional Capture Interfaces.

What’s Next?

 To define Inline Interfaces, proceed to Defining Inline Interfaces (page 51).

 Otherwise, proceed to Finishing the Engine Configuration (page 51).