Firewall
BAT54-Rail/F..
Release
7.54
06/08
8.3
The BAT Firewall
271
U Connection
The connection of a Firewall rule defines to which data packets the rule
should refer to. A connection is defined by its source, its destination and the
used services. The following details can be used to specify the source or des-
tination:
D All stations
D The entire local network (LAN)
D Certain remote stations (described by the name of the remote site list)
D Certain stations of the LAN described by the host name)
D Certain MAC
1
addresses
D Ranges of IP addresses
D Complete IP networks
U Structure of the Firewall rules
Host?
Port?
Connection?
Firewall rule
Packet ac-
Limit/trig-
Condition
Connec-
Other
QoS
IP router
LAN bridge with “isolated mode”
Virtual LANs (VLAN)
N:N mapping
ISDN
ADSL
DSL
LAN / Switch
WLAN-1-
1
to
DMZ
DSLoL
Configuration &
management:
WEBconfig, Telnet,
TFTP
VPN / PPTP
DHCP client / PPP
IP module: NetBIOS, DNS,
DHCP server, RADIUS,
RIP, NTP, SNMP, SYS-
LOG, SMTP
IPX router
LAN interfaces
WAN interfaces
IP masquerading
VPN services
LANCAPI
connection via LAN/
WLAN-2-
1
to
MAC/protocol filter
Filter
Filter
IPX over PPTP/
VPN
Encryption:
802.11i/WPA/
IP-Redirect
BAT
user man-
agement
RADIUS
client / server