DMZ Firewall Solution for the Express Router
Filter
8
Function
Sends all packets generated by the router to the secure LAN (LAN1).
Settings
Dest. address: | 10.5.0.2 |
Dest. port: | > 1023 |
Src. address type: | Host |
Src. address: | 10.2.0.4 |
Src. port: | = 119 |
Action: | Pass |
Protocol: | TCP |
TCP flags: | All |
Dest. address type: | All |
Dest. port: | All |
Src. address type: | Host |
Src. address: | <LAN1 IP address> |
Src. port: | All |
Note 1: Some proxy servers, such as Microsoft Proxy* 2.0, do not support FTP proxy using the FTP protocol. For upload and download using a special FTP program like WS_FTP*, an additional FTP proxy on DMZ is required. This proxy server normally runs on port 21 and has to support passive FTP. If download from an Internet browser is sufficient, the two filters are not required.
Note 2: The filter is not required when using a News proxy server on DMZ.
3.3.2 LAN2 Filters
3.3.2.1 Receive (Rx) Filters on LAN2
Configure these receive filters for the LAN2 port, shown as they appear in Advanced Setup.
⋅
Version 1.0 | 10 |