Table of Contents
Advertisement
Helpful Scripts
5.5. Firewall with ADSL
Mail Server
192.168.10.2
Web Server
192.168.10.3
Router A
#
# IP Configuration
#
enable ip
add ip int=eth1 ip=192.168.1.1
add ip int=eth0 ip=192.168.10.1
add ip route=0.0.0.0 next=192.168.1.2 mask=0.0.0.0 int=eth1
#
# Firewall Configuration
# To enable out going ping see example 5.1.1
enable firewall
enable firewall notify=port,manager port=0
create firewall policy="main"
add firewall policy="main" int=eth0 type=private
add firewall policy="main" int=eth1 type=public
add firewall poli="main" nat=enhanced int=eth0 gblin=eth1 gblip=192.168.1.1
add firewall poli="main" ru=1 ac=allo int=eth1 prot=tcp po=25 ip=192.168.10.2 g
blip=192.168.1.1 gblp=25
add firewall poli="main" ru=2 ac=allo int=eth1 prot=tcp po=80 ip=192.168.10.3 g
blip=192.168.1.1 gblp=80
Helpful Scripts
Revision 5.8.7; 5 April 2001
NAT
Site A
CentreCOM AR300
Access Router
LAN
WAN
192.168.10.0
Private Firewall Public
Internet Address
Mail Server
192.168.1.1
Web Server
192.168.1.1
192.168.1.0/24
SYSTEM
ADSL
192.168.1.1
192.168.1.2
Internet Address
Mail Server
200.200.200.1
Web Server
NAT
200.200.200.1
200.200.200.1/30
Internet
ADSL
PINHole everything through to outside
Router interface
(UDP, TCP)
Page
26
Advertisement
Table of Contents
