Filtering Traffic Between The Transit Zones - Brocade Communications Systems 5600 vRouter Configuration Manual
Hide thumbs
Also See for 5600 vRouter:
- Configuration manual (187 pages) ,
- Reference manual (124 pages) ,
- Quick start manual (48 pages)
Table of Contents
Advertisement
firewall to_private
}
to public {
firewall to_public
}
}
zone private {
description PRIVATE
interface dp0p1p1
interface dp0p1p2
to dmz {
firewall to_dmz
}
to public {
firewall to_public
}
}
zone public {
description PUBLIC
interface dp0p1p4
to dmz{
firewall to_dmz
}
to private {
firewall to_private
}
}
Filtering traffic between the transit zones
The first step in setting up zone-based traffic filtering is to create zone policies, as shown in the following example. To create the zone
policies, perform the following steps in configuration mode.
TABLE 13 Creating the zone policies
Step
Create the configuration node for the DMZ and give a description for the
zone.
Add the interface contained in the DMZ.
Create the configuration node for the private zone and give a description
for the zone.
Add one of the interfaces contained in the private zone.
Add the other interface contained in the private zone.
Create the configuration node for the public zone and give a description
for the zone.
Add the interface contained in the public zone.
Commit the configuration.
Brocade 5600 vRouter Firewall Configuration Guide
53-1004253-01
Command
vyatta@R1# set security zone-policy zone dmz
description "DMZ ZONE"
vyatta@R1# set security zone-policy zone dmz
interface dp0p1p3
vyatta@R1# set security zone-policy zone private
description "PRIVATE ZONE"
vyatta@R1# set security zone-policy zone private
interface dp0p1p1
vyatta@R1# set security zone-policy zone private
interface dp0p1p2
vyatta@R1# set security zone-policy zone public
description "PUBLIC ZONE"
vyatta@R1# set security zone-policy zone public
interface dp0p1p4
vyatta@R1# commit
Configuration Examples
33
Advertisement
Table of Contents
