Default Firewall Policy On Vr221 - Nortel 200 Technical Configuration Manual

Soho secure remote access solution with nortel vpn gateway vpn router

Hide thumbs Also See for 200:

Table of Contents

Technical Configuration Guide:

SOHO Secure RAS with VPN Gateway and VPN Router

V1.0

September, 2006

2.4.6 Default firewall Policy on VR221

By default factory configuration, VR221 has a set of firewall rules and filters configured and they are grouped and

applied based on the travel of packets on the following directions:

• LAN to LAN

• LAN to WAN

• WAN to LAN

• WAN to WAN

For example, if an initiation packet originates on the WAN, this means that someone is trying to make a

connection from the Internet into the LAN. Except in a few special cases, these packets are dropped and logged

by default. If an initiation packet originates on the LAN, this means that someone is trying to make a connection

from the LAN to the Internet. With the default policy, this is assuming an acceptable part of the security policy and

the connection will be allowed.

In this LAB demo, we used VR221's factory default firewall and filters without altering. You may define additional

rules or modify existing ones, but please exercise extreme caution in doing so.

_______________________________________________________________________________________________________________________

External Distribution

NORTEL

Table of Contents