Advertisement
Server Setup
Figure 5: Network Interfaces Setup Diagram
Note
In Threat Grid Appliance (v2.7.2 and later), there is also the enable_clean_interface option, which is disabled
by default. This option (after applying configuration and rebooting) enables access to the administrative
interface on port 8443 of the assigned clean IP.
Firewall Rules
This section provides suggested firewall rules.
Note
Implementing a restrictive outgoing policy on the Dirty interface for ports 22 and 19791 requires tracking
updates over time and spending more time maintaining the firewall. See the required destinations in the
configuration sections.
Note
Using IPv4LL address space (168.254.0.16) for the Dirty interface is NOT supported.
All manuals and user guides at all-guides.com
Firewall Rules
Server Setup
5
Advertisement
