Create an IP rule for traffic from lannet to gatekeeper:
1. Go to: Policies > Firewalling > Main IP Rules > Add > IP Rule
2. Now enter:
• Name: LanToGK
• Action: Allow
• Source Interface: lan
• Source Network: lannet
• Destination Interface: dmz
• Destination Network: ip-gatekeeper
• Service: my_h323_gatekeeper_service
• Comment: Allow H.323 entities on lannet to connect to the gatekeeper.
3. Click OK
Create an IP rule for traffic from the gateway to internal phones on lannet:
1. Go to: Policies > Firewalling > Main IP Rules > Add > IP Rule
2. Now enter:
• Name: GWToLan
• Action: Allow
• Source Interface: dmz
• Source Network: ip-gateway
• Destination Interface: lan
• Destination Network: lannet
• Service: my_h323_gatekeeper_service
• Comment: Allow communication from the gateway to H.323 phones on lannet.
3. Click OK
Create an IP rule for traffic from the gateway to internal phones on lannet:
1. Go to: Policies > Firewalling > Main IP Rules > Add > IP Rule
2. Now enter:
• Name: BranchToGW
• Action: Allow
• Source Interface: vpn-branch
Chapter 6: Security Mechanisms
497
To Next Page
Loading...
