ELTEX ESR-1000 - 7 Safe configuration recommendations; 7.1 General recommendations; 7.2 Event logging system configuration

109 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

104 ESR Series Routers Operation Manual

esr(config-subscriber-control)# bypass-traffic-acl DHCP

esr(config-subscriber-control)# default-service

esr(config-subscriber-default-service)# class-map INTERNET

esr(config-subscriber-default-service)# filter-name local defaultservice

esr(config-subscriber-default-service)# filter-action permit

esr(config-subscriber-default-service)# default-action redirect

http://192.0.2.20:8080/eltex_portal/

esr(config-subscriber-default-service)# session-timeout 3600

esr(config-subscriber-default-service)# exit

esr(config-subscriber-control)# enable

esr(config-subscriber-control)# exit

Configure rules for transition among security zones.

esr(config)# object-group service telnet

esr(config-object-group-service)# port-range 23

esr(config-object-group-service)# exit

esr(config)# object-group service ssh

esr(config-object-group-service)# port-range 22

esr(config-object-group-service)# exit

esr(config)# object-group service dhcp_server

esr(config-object-group-service)# port-range 67

esr(config-object-group-service)# exit

esr(config)# object-group service dhcp_client

esr(config-object-group-service)# port-range 68

esr(config-object-group-service)# exit

esr(config)# object-group service ntp

esr(config-object-group-service)# port-range 123

esr(config-object-group-service)# exit

Enable access to the Internet from trusted and dmz zones:

esr(config)# security zone-pair trusted untrusted

esr(config-zone-pair)# rule 10

esr(config-zone-pair-rule)# action permit

esr(config-zone-pair-rule)# match protocol any

esr(config-zone-pair-rule)# match source-address any

esr(config-zone-pair-rule)# match destination-address any

esr(config-zone-pair-rule)# enable

esr(config-zone-pair-rule)# exit

esr(config-zone-pair)# exit

esr(config)# security zone-pair dmz untrusted

esr(config-zone-pair)# rule 10

esr(config-zone-pair-rule)# action permit

esr(config-zone-pair-rule)# match protocol any

esr(config-zone-pair-rule)# match source-address any

esr(config-zone-pair-rule)# match destination-address any

esr(config-zone-pair-rule)# enable

esr(config-zone-pair-rule)# exit

esr(config-zone-pair)# exit

esr(config)# security zone-pair dmz trusted

esr(config-zone-pair)# rule 10

esr(config-zone-pair-rule)# action permit

esr(config-zone-pair-rule)# match protocol any

esr(config-zone-pair-rule)# match source-address any

esr(config-zone-pair-rule)# match destination-address any

esr(config-zone-pair-rule)# enable

esr(config-zone-pair-rule)# exit

esr(config-zone-pair)# exit

Enable DHCP transmitting from trusted to dmz:

esr (config)# security zone-pair trusted dmz

esr (config-zone-pair)# rule 10

esr(config-zone-pair-rule)# action permit

esr(config-zone-pair-rule)# match protocol udp

esr(config-zone-pair-rule)# match source-address any

esr(config-zone-pair-rule)# match destination-address any

Table of Contents

Other manuals for ELTEX ESR-1000

User Manual650 pages

Quick Start And Installation Guide19 pages

Related product manuals

Preview: ELTEX ESR-10