Firewall Configuration For Sr4134 2 - Nortel Secure 4134 Configuration
Security — configuration and management
Hide thumbs
Also See for Secure 4134:
- Installation manual (132 pages) ,
- Installation — hardware components (124 pages) ,
- Quick start manual (70 pages)
Table of Contents
Advertisement
250 Configuration examples
4
5
6
Firewall configuration for SR4134 2
Step
1
2
3
4
5
6
Copyright © 2007, Nortel Networks
.
To configure the corp firewall for outgoing IPsec tunnel traffic, enter:
policy 1001 out permit address 10.1.1.0 24 20.1.1.0 24
exit
To configure the NAT for internet access, enter:
policy 1002 out permit address 10.1.1.2 10.1.1.254 any
any nat-ip 200.1.1.1
exit
To add the trusted Ethernet interface to the corp firewall, enter:
interface ethernet0/1
exit
Action
To configure the internet firewall, enter:
configure terminal
firewall internet
policy 1000 in permit service ike self
exit
To add the untrusted WAN interface to the internet firewall, enter:
interface wan1
exit
To configure the corp firewall for incoming IPsec tunnel traffic, enter:
firewall corp
policy 1000 in permit address 10.1.1.0 24 20.1.1.0 24
exit
To configure the corp firewall for outgoing IPsec tunnel traffic, enter:
policy 1001 out permit address 20.1.1.0 24 10.1.1.0 24
exit
To configure the NAT for internet access, enter:
policy 1002 out permit address 20.1.1.2 20.1.1.254 any
any nat-ip 200.1.1.2
exit
To add the trusted Ethernet interface to the corp firewall, enter:
interface ethernet0/1
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600 01.02 Standard
10.0 3 August 2007
—End—
Advertisement
Table of Contents
