©2015 Cradlepoint. All Rights Reserved. | +1.855.813.3385 | cradlepoint.com
39
User Manual / CBA850
11/5/15
SECURITY
IDENTITIES
HOST ADDRESSES
Identities are reusable groups of items that are added to lter policy rules. A
match on any single item in the group will cause the rule to match. Identities
are referenced in rules by their name. Choosing descriptive names like “NW
Sales Team” or “Engineering” will aid in understanding existing rules and in
choosing identities for new rules.
A Host identity can contain IPv4, IPv6, and Fully Qualied Domain Name
addresses. A single identity can contain a combination of IPv4 and IPv6
addresses. IPv4/6 addresses cannot be combined with FQDN addresses in the
same identity.
IP addresses are entered using CIDR notation, e.g. 1.2.3.4/32 and
0123:4567::CDEF/128. FQDN addresses are entered with at least one dot
separating a top-level domain from a root zone, e.g. cradlepoint.com.
To add a Host Address Identity, click Add.
PORTS
A port identity member can be entered as a single Start port number or as a port range by entering both a
Start and End port number.
To add a Port Identity, click Add.
MAC ADDRESSES
MAC addresses are entered in the form aa:bb:cc:dd:ee:.
To add a MAC Address Identity, click Add.
ZONE FIREWALL
ZONE DEFINITION
A Zone is a group of network interfaces. By default all interfaces within a zone
are allowed to initialize network communication with each other, however any
network trac initialized outside of a zone to the interfaces within the zone
will be denied.
To add a zone, click Add.
To Next Page
Loading...
