Security Gateway Manual SG-2100
Action Pass
Interface OPTx (or the custom name)
Protocol Any
Source OPTx Net (or the custom name)
Destination Any
Description Default allow all from OTPx
• Click Save
With the rules all in place, now click Apply Changes to finish and activate the new rules.
After the configuration, the rules should look like the following figure:
Fig. 1: Example firewall rules for isolated LAN type segment
Tip: Rule separators are useful for documenting a ruleset in place.
Similar to the isolated network, it’s also possible to be much more strict with rules to only allow specific outbound
ports. When creating this type of configuration,
12.7 Other Services
In most cases the above configuration is sufficient and clients on the new LAN can now obtain an address and get
out to the Internet. However, there may be other custom settings which need accounted for when adding a new local
interface:
• If the DNS resolver has specific interface bindings, add the new interface to the list.
• If using ALTQ traffic shaping, re-run the shaper wizard to include this new LAN type interface.
• Consider using captive portal to control access the interface
© Copyright 2022 Rubicon Communications LLC 63
To Next Page
Loading...
Need help?
General
