Table of Contents
Advertisement
112
Maintaining your security gateway
Making system changes with the System Setup Wizard
Configuring network interface properties
The security gateway must have at least two network interfaces, which are configured during the
initial setup of the appliance.
Some network interface properties can only be changed by running the system setup wizard, including:
The interface type: Inside or Outside
■
The interface's IP address and netmask
■
You can modify other properties from the network interface properties dialog box to add protections to
the network interface, enable multicast traffic, and apply packet filters to the interface.
Different protection options are advisable for inside and outside interfaces. Those that are most
appropriate are enabled by default.
These defaults provide a standard level of protection that you can modify as your security network
requirements dictate.
Prerequisites
None.
To configure network interface properties
1
In the SGMI, in the left pane, under Assets, click Network.
2
In the right pane, on the Network Interfaces tab, double-click the network interface you want to
configure.
3
In the network interfaces properties dialog box, on the General tab, do one or more of the following:
Logical name
To change the logical name of the interface, type a new name in this text box.
Port scan detection
To enable port scan detection, check this option.
Spoof protection
To enable spoof protection, check this option.
Provide recursion and
If you want private DNS information to be exposed on this interface, check this option.
expose private DNS
information
Suppress reset and
To put the interface into stealth mode, check this option.
ICMP messages
SYN flood restriction
To set the SYN flood restriction level on this interface, from the drop-down list, select
level
the restriction level.
If you do not select a restriction level, SYN flood protection is not enabled on this
interface.
IDS/IPS policy
To enable intrusion detection and prevention (IDS/IPS) on this interface, from the
drop-down list, select the policy to use.
Caption
Type a brief description of the network interface.
4
On the Packet Filters tab, do one of the following:
in
Input filter
Select a filter with which to filter traffic arriving at the interface.
Output filter
Select a filter with which to filter traffic leaving the interface.
Advertisement
Table of Contents
Troubleshooting
