Table of Contents
Advertisement
Rule Name
Action
Source
InBoundPu
Permit
Any
blicAccess
InBoundPu
Permit
Any
blictoDMZA
ccess
InBoundPu
Deny
Any
blicBlockAll
OutBoundP
Permit
PublicIP
ublicAcces
s
OutBoundP
Permit
DNZNet
ublickPing
PrivateN
Access
et
SemiPriv
ateNat
Manage
mentNet
OutBoundP
Permit
PublicIP
ublicDNSA
DMZNet
ccess
PrivateN
et
SemiPriv
ateNet
Manage
mentNet
OutBoundP
Permit
Any
ublicGener
alAccess
OutBoundP
Deny
Any
ublicBlockA
ll
Destination
Service
PublicIP
IKE_IN
IPSEC_NAT_T_IN
AH/ESP
ICMPDestUnreach
DMZNet
ICMPEchoReq(PING)
FTP-Ctrl/PassiveFTP
SSH/TELNET
HTTP/HTTPS
DNS-TCP/DNS-UDP
POP3/IMAP/SMTP
NNTP
Any
Any
Any
IKE_OUT
IPSEC_NAT_T_OUT
AH/ESP
ICMPDestUnreach
Any
ICMPEchoRequest
Any
DNS-TCP
DNS-UDP
Any
ICMPEchoReq(PING)
FTP-Ctrl/PassiveFTP
SSH/TELNET
HTTP/HTTPS
DNS-TCP/DNS-UDP
POP3/IMAP/SMTP
Any
Any
Public zone firewall templates
Direction
Zone
Keep
State
In
Public
no
In
Public
Yes
In
Public
No
Out
Public
no
Out
Public
Yes
Out
Public
Yes
Out
Public
Yes
Out
Public
No
Issue 4 May 2005
Description
Permit
incoming
VPN traffic
and ICMP
unreachable
packet
Permit
incoming
traffic to
DMZ
network
Deny the
rest of traffic
Permit
outgoing
VPN traffic
Permit
outgoing
ping access.
Permit
outgoing
DNS
access.
Permit traffic
with the
services to
go out. The
traffic can
come from
any network.
Deny the
rest of traffic
301
Advertisement
Table of Contents
