VLAN Policy Examples
Firebox Vclass User Guide 223
Address groups
VLAN tenant entries
The requisite VPN policies on “ASP” should have the fol-
lowing parameters:
At the Company ABC site, a new policy should be applied
to “ABC” with the following parameters:
At the Company XYZ site, a new policy should be applied
to “XYZ” with the following parameters:
ABC_Net IP Address: 192.168.1.0
Subnet Mask: 255.255.255.0
XYZ_Net: IP Address: 205.118.17.0
Subnet Mask: 255.255.255.0
Tenant_ABC: IP Address: 10.1.1.0
Subnet Mask: 255.255.255.0
Tenant_XYZ: IP Address: 10.1.2.0
Subnet Mask: 255.255.255.0
ABC: VLAN id = 3
interface 0 (Private)
VLAN IP/mask: 10.1.1.1/255.255.255.0
XYZ: VLAN id = 25
interface 0 (Private)
VLAN IP/mask: 10.1.2.1/255.255.255.0
SRC Dest Srvc In Tenant Firewall IPSec
ABC_Net Tenant_ABC ANY 1 ABC Pass > ipsec_ABC
XYZ_Net Tenant_XYZ ANY 1 XYZ Pass > ipsec_XYZ
SRC Dest Srvc In Tenant Firewall IPSec
ABC_Net Tenant_ABC ANY 0 Pass < ipsec_ABC
Src Dest Srvc In Tenant Firewall IPSec
XYZ_Net Tenant_XYZ ANY 0 Pass < ipsec_XYZ
To Next Page
Loading...
