Security; Identities; Zone Firewall - Cradlepoint IBR350 User Manual

User Manual / IBR350

SECURITY

PORTS
A port identity member can be entered as a single Start port number or as a port range by entering both a
Start and End port number.
To add a Port Identity, click Add.
MAC ADDRESSES
MAC addresses are entered in the form aa:bb:cc:dd:ee:ff.
To add a MAC Address Identity, click Add.

IDENTITIES

Identities are reusable groups of items that are added to filter policy rules. A
match on any single item in the group will cause the rule to match. Identities are
referenced in rules by their name. Choosing descriptive names like "NW Sales Team"
or "Engineering" will aid in understanding existing rules and in choosing identities for
new rules.
HOST ADDRESSES
A Host identity can contain IPv4, IPv6, and Fully Qualified Domain Name addresses.
A single identity can contain a combination of IPv4 and IPv6 addresses. IPv4/6
addresses cannot be combined with FQDN addresses in the same identity.
IP addresses are entered using CIDR notation, e.g. 1.2.3.4/32 and
0123:4567::CDEF/128. FQDN addresses are entered with at least one dot separating a
top-level domain from a root zone, e.g. cradlepoint.com.
To add a Host Address Identity, click Add.

ZONE FIREWALL

ZONE DEFINITION
A Zone is a group of network interfaces. By default all interfaces within a zone
are allowed to initialize network communication with each other, however any
network traffic initialized outside of a zone to the interfaces within the zone
will be denied.
To add a zone, click Add.
©2016 Cradlepoint. All Rights Reserved. | +1.855.813.3385 | cradlepoint.com
5/6/16
45