Configuring the Local Network
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|113
To enable WAN as LAN:
1. Go to Device > Advanced Settings and select OS advanced settings - Enable LAN on
WAN.
2. Click Edit to change the value to true.
The Device > Local Network page now shows WAN ports included in the list of LAN and DMZ
(local interfaces, switches, bridges, bonds and VLANs).
n
When used for WAN networks, the interface name of the WAN port is WAN.
n
When used for LAN networks, the interface name of the WAN port is LANW.
Note - The WAN as LAN feature is the only supported solution for users who want to
connect to the Internet using LAN ports. Make sure the interface is configured
correctly.
Configuration parameters for WAN as LAN are similar to DMZ.
Monitor Mode
Security Gateways can monitor traffic from a Mirror Port or Span Port on a switch.
With Monitor Mode, the appliance uses Automatic Learning or user-defined networks to
identify internal and external traffic, and to enforce policy.
Automatic Learning - The appliance automatically recognizes external networks by identifying
the default gateway's network from requests to the Internet (specifically, requests to Google).
The rest of the networks are considered internal.
User-Defined Networks - You can manually define internal networks. If a network is not
defined as internal, it is considered external.
In both Automatic Learning and user-defined networks:
n
Traffic to internal hosts is inspected by the Incoming/Internal/VPN Rule Base.
n
Traffic to external hosts is inspected by the Outgoing Rule Base.
n
Threat prevention's default configuration is optimized to inspect suspicious traffic from
external hosts to internal hosts.
To configure monitor mode in the WebUI:
1. Go to Device > Local Network.
2. Select an interface and double-click.
The Edit window opens in the Configuration tab.
3. In the Assigned To drop-down menu, select Monitor Mode.
To Next Page
Loading...
