Port Assignment Tab Field Descriptions; Wan/Isp Field Descriptions - Symantec 360R - Security Gateway SGS Administration Manual

162 Field descriptions

WAN/ISP field descriptions

Port Assignment tab field descriptions

WAN/ISP field descriptions
Port assignments let you specify if the LAN port resides on a trusted or
untrusted VLAN. The trusted VLAN is for wired connections and the non-
trusted is for wireless connections.
Table C-9 Port Assignment tab field descriptions
Section Field
Physical LAN Port 1, Port 2, Port
Ports 3, Port 4
(Model 320)
Port 1, Port 2, Port
3, Port 4, Port 5,
Port 6, Port 7,
Port 8
(Model 360/360R)
The Symantec Gateway Security 300 Series WAN/ISP functionality provides
connections to the outside world. This can be the Internet, a corporate network,
or any other external private or public network. WAN/ISP functionality can also
be configured to connect to an internal LAN when the security gateway is
protecting an internal subnet.
This section contains the following topics:
Description
Assigns ports on the switch function of the
security gateway as trusted or untrusted.
This enables wireless and wired LAN-based VPN
security through the port-based virtual network
capabilities of the switch function on the
security gateway, in addition to support for LAN-
side global tunnels directly to the wireless
interface. The tunnel endpoint will be at the
main gateway for each LAN network subnet.
Options include:
Standard
■
Use this assignment for all non-wireless
LAN devices. All traffic is implicitly trusted
and allowed to pass between VLANs.
SGS Access Point Secured
■
Enables VPN security to be enforced at the
roaming access point or switch level.
Enforce VPN tunnels/Allow IPsec pass-thru
■
Explicit untrusted association. Requires a
mandatory tunnel between the wireless
VPN client and the security gateway. IPsec
traffic is allowed to pass through a
subsidiary switch with tunnel termination
points located at the primary security
gateway and the client.