CHAPTER 12: USING THE D400 LOCAL CONFIGURATION UTILITY
D400 SUBSTATION GATEWAY INSTRUCTION MANUAL GE INFORMATION 145
The default firewall rules should be sufficient for most users. However, you may create a
set of custom rules if you desire more granular permissions for the protocols you are
accessing.
Additional notes on the D400 firewall:
• In a redundant setup, the same firewall rules above apply to both the active and
standby device.
• When the firewall is active, you cannot perform IP routing between an external and
internal interface. The only way to pass through the firewall is by using a secure SSL/
TLS connection or the proxy.
Configure the settings of the firewall through the Firewall menu. The Secure Access
settings are described in
Table 34.
Table 35: Firewall setting descriptions
Configure host names
The Configure Host Names menu allows you to assign a host name to your D400 and
to view, add, and delete entries in the hosts file. The Host Name settings are described in
Table 36.
The D400 only allows you to enter IPV4 addresses.
Table 36: Host name setting descriptions
All other services (Inbound) Don't Care Deny Deny
Note: By default, HTTPS and SSH do not provide strong client authentication since only a password
is required to access the system. Therefore, these protocols are not considered secure enough for
use over external interfaces. They can be considered secure if you employ a remote authentication
server that provides two-factor authentication. In that case, you may opt to modify the firewall rule
and allow HTTPS and SSH on external interfaces.
Setting Description
Current Configuration Use this function to view the status of the firewall and the rules
currently being enforced.
Enable/Disable Firewall Use this function to turn the firewall feature on or off. By default, the
firewall is enabled when the D400 is received from the factory. If you
disable the firewall, incoming traffic is not filtered.
Edit Generated Rules When the firewall is active, rules are generated for the services in
use on your D400 based on the parameters specified in the table
above. Use this option to modify these generated rules.
Add/Edit/Remove Custom
Rules
Use this option to create a custom firewall rule that is applied in
addition to the system generated rules.
Service Name Notes External Mode Internal Mode
Setting Description
Add a New Host Use this function to add a host name and IP address to the hosts file.
Delete a Host Use this function to view a list of configured hosts. Select an item
number to delete the associated host entry.
Modify a Host Use this function to view a list of configured hosts. Select an item
number to modify the associated host name and IP address. Press
Enter to use the previously entered value.
Delete All Hosts Use this function to remove all entries from the hosts file.
View All Hosts Use this function to view a list of configured hosts.
To Next Page
Loading...
Need help?
General
