Advanced Properties" Tab - Stormshield SN series Configuration Manual

Here, several associated IP addresses and network masks may be defined for the same bridge
(the need to create aliases, for example). These aliases may allow you to use this Stormshield
Network firewall as a central routing point. As such, a bridge can be connected to various sub-
networks with a different address range. To add or remove them, simply use the Add and Delete
buttons located above the fields in the table.
Several IP addresses (aliases) can be added in the same address range on an interface. In this
case, these addresses must all have the same mask. Reloading the network configuration will
apply this mask on the first address and a mask /32 on the following addresses.

"Advanced properties" tab

Physical (MAC)
address
DHCP
This option will be indicated as "disabled" if the option Dynamic IP (obtained by DHCP)
was not selected in the Configuration of the interface tab and the options will be grayed
out.
DNS name (optional) Name of the DNS server (FQDN) for the connection.
Requested lease time
(seconds)
Request domain name
servers from the DHCP
server and create host
objects
Routing without analyzing
This option will be indicated as "disabled" if the option Address range inherited from the
bridge was not selected in the Configuration of the interface tab and the options will be
Page 204/448
Since the GRETAP interface is contained in a bridge, it will have the same MAC address
as the bridge.
NOTE
This field is grayed out as the interface belongs to a bridge. It can neither be modified
nor deleted.
NOTE
This optional field does not identify the DHCP server but the firewall. If this field has
been entered and the external DHCP server has the option of automatically updating
the DNS server, the DHCP server will automatically update the DNS server with the
name and the IP address provided by the firewall.
This name consists of 6 bytes in hexadecimal separated by :
Period during which the IP address is kept before renegotiation.
If this option is selected, the firewall will retrieve DNS servers from the DHCP server it
contacts (access provider, for example) to obtain its IP address.
Two objects will be dynamically created in the object database upon the selection of
this option: Firewall_<interface name>_dns1 and Firewall_<interface name_dns2. They
can then be used in the configuration of the DHCP service. So, if the Firewall provides
the users on its network with a DHCP service, the users will also benefit from the DNS
servers given by the access provider.
NOTE
This option will be disabled if the option Dynamic IP (obtained by DHCP) was
not selected in the Configuration of the interface tab
NOTE
SNS - USER CONFIGURATION MANUAL V.3
sns-en-user_configuration_manual-v3 - Copyright © Stormshield 2016
INTERFACES