Professional Documents
Culture Documents
Firewall / IP Filter
This function allows user to enable the functionality of IP filter. Both inside and outside
packets through router could be decided to allow or drop by supervisor.
Figure 41-2
Figure 41-4
Figure 41-5
Figure 41-6
Figure 41-7
Figure 41-8
Figure 41-9
Figure 41-10
Figure 42-11
Figure 41-12
Figure 41-13
Figure 41-14
Figure 41-15
Some employees (IP192.168.33.128/27) can use FTP、Mail、Web service , and some (IP
192.168.33.64/26) can only use Mail service.
Figure 41-16
Figure 41-17
Figure 41-18
Figure 41-19
Figure 41-20
Figure 41-21
Figure 41-22
Figure 41-24
Figure 41-25
Host with IP 192.168.33.10 cannot be accessed by the remote VPN network while hosts
with IP192.168.33.5 and 192.168.33.6 can be accessed.
Figure 41-26
Figure 41-27
Figure 41-28
Figure 41-29
Figure 41-30
Figure 41-31
Figure 41-32
Some users ( 192.168.33.33 ~ 192.168.33.36 ) can surf Internet and some ( 192.168.33.16
~ 192.168.33.31 ) can only access the remote VPN network.
Figure 41-33
Figure 41-34
Figure 41-35
Figure 41-36
Figure 41-37
Figure 41-38
Figure 41-39
Figure 41-40
Figure 41-41
Figure 41-42
LAN to DMZ From Intranet to DMZ, ex: allow some employees can access
DMZ.
From some security issue, we can use LAN to LAN block
LAN to LAN function to prohibited LAN1 user from visiting LAN2 resource
in VLAN environment.
DMZ to WAN From DMZ to WAN, ex:allow DMZ using Internet resources.
DMZ to LAN Form DMZ to LAN, ex: allow DMZ using inner Database.