Table of Contents
Advertisement
Configuration
46 von 105
Remote network address
The appropriate netmask
With these two entries you give the address of the network in
which the remote communication partner is located. This
address can also be that of a computer which is connected
direct to the VPN gateway.
Firewall incoming, Firewall outgoing
While the settings performed under the menu item Firewall
apply only to non-VPN connections (see above under Firewall
#
Incoming, page 27), the settings here apply only to the VPN
connection defined here. In practical terms, that means: if you
have defined several VPN connections, you can restrict access
to each one from the outside or from the inside. Attempts to
bypass the restrictions can be recorded in the log.
!
According to the default setting the VPN firewall is set so
that everything is permitted for this VPN connection.
However, the extended firewall settings which are defined
and explained above still apply to each individual VPN
connection, independent of each other (see Firewall
Extended Settings, page 33).
!
If several firewall rules have been set, they are scanned in
the order of the entries from top to bottom until a suitable
rule is found. This rule is then applied. Should there also
be rules further down in the list which would be also
suitable, they are ignored.
!
To set or delete a firewall rule, proceed exactly as
described above (see Firewall
#
Firewall
As there, you can make the following possible entries:
Protocol:
All means: TCP, UDP, ICMP and other IP protocols.
IP address:
0.0.0.0/0 means all addresses. To denote a range, use
CIDR syntax - see CIDR (Classless InterDomain Routing),
page 79.
Outgoing, page 29.
#
Incoming, page 27 and
SINAUT MD740-1
#
Advertisement
Table of Contents
