lost in firewall

Unanswered Question

Hi,

Sorry for my bad English, I'm French.

I have great difficulties to understand and to modify the new firewall concept.

The zone things …

My router : C181X Software (C181X-ADVENTERPRISEK9-M), Version 12.4(9)T6

I only want a firewall that does:

Internal > external

permit all traffic

Lan to lan VPN :

internal <> vpn : permit any any

External > Internal and NAT:

Any > 192.168.100.1 eq 11000, 8080, 443, 5307, 2022, 2021, 3389, 25

@IProuter: 192.168.100.99

@lan: 192.168.100.0/24

@lanVpn: 192.168.2.0/24

@wan: WAN

@wanVpn: VPN

Someone can tell me how the running config will look like with all these parameters?

With that I will understand I think.

Thx a lot.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
smahbub Mon, 09/08/2008 - 05:50

Zone-Based Policy Firewall (also known as Zone-Policy Firewall, or ZFW) changes the firewall configuration from the older interface-based model to a more flexible, more easily understood zone-based model. Interfaces are assigned to zones, and inspection policy is applied to traffic moving between the zones. Inter-zone policies offer considerable flexibility and granularity, so different inspection policies can be applied to multiple host groups connected to the same router interface

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00808bc994.shtml

Actions

This Discussion