Intel 9535 Internet Connection Filters, Receive Rx Filters on the connection to the Internet

Page 14

DMZ Firewall Solution for the Express Router

3.3.3 Internet Connection Filters

3.3.3.1 Receive (Rx) Filters on the connection to the Internet

Configure these receive filters for the Internet connection, shown as they appear in Advanced Setup.

⋅

Filters are defined as follows:

Filter Function

—Prohibit users on the secure network from accessing the Internet.

1Allows HTTP from the Internet to the HTTP/FTP server on the DMZ.

Settings

Default Action:	Discard

Action:	Pass
Protocol:	TCP
TCP flags:	All
Dest. address type:	Host
Dest. address:	10.2.0.1
Dest. port:	= 80
Src. address type:	All
Src. port:	> 1023

07-12-99

Version 1.0

13

Image 14

Contents DMZ Firewall Solution Copyright 1999, Intel Corporation. All rights reserved Table of Contents About This Document What is a DMZIntroduction ReferencesIP Address Selection General Setup and ConsiderationsIP Filters in the Express Router Mail Smtp Setup Routing SetupDNS Setup FTP SetupNetwork Address Translation NAT Setup DMZ Single IP Address SolutionStatic Routing Setup Entry Function IP Filters SetupSettings Receive Rx Filters on LAN1Filter Function Transmit Tx Filters on LAN1Src. address 10.2.0.2 Src. port Action Pass Protocol 2 LAN2 Filters Receive Rx Filters on LAN2Filter Function Settings RIPTransmit Tx filters on LAN2 Settings Internet Connection Filters Receive Rx Filters on the connection to the InternetAction Pass Protocol UDP Transmit Tx Filters on the Connection to the Internet DMZ Multiple IP Address Solution IP Address AssignmentNetwork Address Translation NAT Transmit Tx Filters on LAN1 Settings Src. port Action Pass Protocol Dest. address type All Dest port Src. address type All Src. port Action Discard Protocol Action Discard Protocol Transmit Tx filters on LAN2 Src. port 1023 Action Pass Protocol UDP Transmit Tx Filters on the Connection to the Internet