These IP rules allow the IP data traffic for all devices for the specified direction.
NAT rule IP rules Description
Ac‐
tion
Fro
m
To Source (Range) Destination
(Range)
Ser
vic
e
① Ac‐
cep
t
vlan
1
(in‐
ter‐
nal)
vlan
2
(ex‐
ter‐
nal)
192.168.1.0/24
(Source IP sub‐
net)
10.10.10.0/24
(Destination IP sub‐
net)
all All packets sent from vlan1 (internal) to
vlan2 (external) are allowed to pass.
This IP packet filter rule applies to the devi‐
ces connected to vlan1.
② Ac‐
cep
t
vlan
2
(ex‐
ter‐
nal)
vlan
1
(in‐
ter‐
nal)
192.168.1.0/24
(Translated Des‐
tination IP Sub‐
net)
10.100.1.0/24
(Destination IP sub‐
net)
all All packets sent from vlan2 (external) to
vlan1 (internal) are allowed to pass.
Example 2:
These IP rules restrict the IP data traffic to a specific device.
NAT rule IP rules Description
Ac‐
tion
Fro
m
To Source (Range) Destination
(Range)
Ser
vic
e
① Ac‐
cep
t
vla
n1
(in‐
ter‐
nal
)
vlan
2
(ex‐
ter‐
nal)
192.168.1.20/32
(Source IP sub‐
net)
10.10.10.0/24
(Destination IP sub‐
net)
all Only packets sent to vlan2 (external) from
the IP address 192.168.1.20 are allowed to
pass.
② Ac‐
cep
t
vla
n2
(ex
ter‐
nal
)
vlan
1 (in‐
ter‐
nal)
192.168.1.20/32
(Translated Des‐
tination IP Sub‐
net)
10.100.1.0/24
(Destination IP sub‐
net)
all Only packets sent from vlan2 (external) to
the IP address 192.168.1.20 are allowed to
pass.
Technical basics
3.5 Security functions
SCALANCE S615 Web Based Management
48 Configuration Manual, 11/2019, C79000-G8976-C388-08
To Next Page
Loading...
