User's Manual Part 2

Setting the Firewall Security Level

206 Check Point Safe@Office User Guide

• Access is blocked from the WAN (Internet) to all internal networks (LAN,

DMZ, WLAN, VLANs, and OfficeMode).

• Access is allowed from the internal networks to the WAN, according to the

firewall security level (Low/Medium/High).

• Access is allowed from the LAN network to the other internal networks

(DMZ, WLAN, VLANs, and OfficeMode).

• Access is blocked from the DMZ, WLAN, VLAN, and OfficeMode

networks to the other internal networks, (including between different

VLANs).

• HTTP access to the Safe@Office Portal (my.firewall and my.vpn) is

allowed from all internal networks except the WLAN. The WLAN can

only access the Safe@Office Portal using HTTPS, unless a specific user-

defined rule allows this.

• When using the print server function (see Using Network Printers on page

427), access from internal networks to connected network printers is

allowed.

• Access from the WAN to network printers is blocked.

These rules are independent of the firewall security level.

You can easily override the default security policy, by creating user-defined

firewall rules. For further information, see Using Rules on page 211.

Setting the Firewall Security Level

The firewall security level can be controlled using a simple lever available on the

Firewall page. You can set the lever to three states.