Cisco Small Business Pro SA 520W Administration Manual page 130
Small business pro sa 500 series security appliances
Hide thumbs
Also See for Small Business Pro SA 520W:
- Administration manual (240 pages) ,
- Administration manual (244 pages)
Table of Contents
Advertisement
Firewall Configuration
Firewall Rule Configuration Examples
Cisco SA 500 Series Security Appliances Administration Guide
Parameter
Source Hosts
Internal IP Address
External IP Address
Allowing Inbound Traffic to a Web Server Using a Specified Public IP
Address
Situation: You host a public web server on your local DMZ network. You want to
allow inbound HTTP requests from any outside IP address. Your ISP has provided
a static IP address that you want to expose to the public as your web server
address.
Solution: Add the static IP address (provided by the ISP), to the WAN interface as
an alias and create an inbound rule as For information about configuring aliases,
see
Configuring IP Aliases for WAN interfaces, page
Parameter
From Zone
To Zone
Service
Action
Source Hosts
Internal IP Address
External IP Address
Allowing Inbound Traffic from Specified Range of Outside Hosts
Situation: You want to allow incoming video conferencing to be initiated from a
restricted range of outside IP addresses (132. 1 77.88.2 - 132. 1 77.88.254).
Solution: Create an inbound rule as shown below. In the example, connections for
CU-SeeMe (an Internet video-conferencing client) are allowed only from a
specified range of external IP addresses.
Value
Any
192. 1 68.5.2
Dedicated WAN
Value
Insecure (WAN1)
DMZ
HTTP
ALLOW always
Any
192. 1 68.5.2
Dedicated WAN-209. 1 65.201.225
5
121.
130
Hide quick links:
Advertisement
Table of Contents
