Firewall; Chapter 24 Firewall; Overview; What You Can Do In This Chapter - ZyXEL Communications UAG4100 User Manual
Unified access gateway
Hide thumbs
Also See for UAG4100:
- User manual (477 pages) ,
- Application note (67 pages) ,
- Support notes (60 pages)
Table of Contents
Advertisement
24.1 Overview
Use the firewall to block or allow services that use static port numbers. The firewall can also limit
the number of user sessions.
This example shows the UAG's default firewall behavior for WAN to LAN traffic and how stateful
inspection works. A LAN user can initiate a Telnet session from within the LAN zone and the firewall
allows the response. However, the firewall blocks Telnet traffic initiated from the WAN zone and
destined for the LAN zone.
Figure 155 Default Firewall Action
24.1.1 What You Can Do in this Chapter
• Use the Firewall screens
asymmetrical routes, and manage and configure firewall rules.
• Use the Session Control screens (see
concurrent NAT/firewall sessions a client can use.
24.1.2 What You Need to Know
Stateful Inspection
The UAG has a stateful inspection firewall. The UAG restricts access by screening data packets
against defined access rules. It also inspects sessions. For example, traffic from one zone is not
allowed unless it is initiated by a computer in another zone first.
Zones
A zone is a group of interfaces. Group the UAG's interfaces into different zones based on your
needs. You can configure firewall rules for data passing between zones or even between interfaces.
UAG4100 User's Guide
C
HAPTER
(Section 24.2 on page
225) to enable or disable the firewall and
Section 24.3 on page
2 4
Firewall
230) to limit the number of
223
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
