Appendix B: Firewall rules template

General

The security gateway contains a powerful multi-layer inspection engine to provide extensive filtering capabilities, essential for a full-time connection to the Internet. You can configure your own rules, but, as a convenience in setting up the Firewall on the security gateway, predefined general firewall rules (templates) can be selected to protect the public, private, semi-private, DMZ, and maintenance zones.

These predefined firewall rules are grouped into security levels of high, medium, and low. One firewall security level is applied to the security gateway, and the rules for each zone are enforced according to the type of zone being protected. How the template rules are applied to a zone are described in this appendix.

The Firewall engine uses a rule-based method of packet filtering, where the priority of the rule is determined by its position in the list (first is highest priority).

Note:

The common services referred to in this appendix include all of the following:

Ping

FTP control, Passive Data FTP

SSH, TELNET

HTTP, HTTPS

POPS, IMAP, SMTP, and NNTP

High Security. - Selecting high security enforces a set of rules that try to protect the security gateway itself and the internal network zones. For high security the following policy is defined:

Private networks and management networks are considered internal networks, and can initiate connections to access common services on the Internet.

Except for access to the DMZ zone, traffic initiated from the Internet is denied.

VPN outgoing and incoming traffic is allowed.

DMZ common services can be accessed from all interfaces. The DMZ network cannot initiate any traffic.

The semi-private zone is not considered completely trusted. Access from semi-private to private zones is allowed only if it is VPN traffic. All other incoming traffic is blocked.

Issue 4 May 2005 297

Page 296 Page 298
Page 297
Image 297
Avaya 3.7 manual Appendix B Firewall rules template, General
Page 296 Page 298

3.7 specifications

Avaya 3.7 represents a significant evolution in unified communications technology, designed to enhance collaboration and streamline communication workflows for organizations of all sizes. As a cornerstone of Avaya's offerings, this version incorporates a range of features and improvements that cater to contemporary business needs, emphasizing flexibility, reliability, and seamless integration.

One of the most notable features of Avaya 3.7 is its robust call management capabilities. The platform allows users to manage calls effectively through a user-friendly interface, enabling intuitive functionalities such as drag-and-drop call handling, call forwarding, and conference calling. These features help employees stay connected, facilitating better communication and teamwork across departments.

In terms of mobility, Avaya 3.7 supports mobile applications that allow users to access the system remotely. This is particularly advantageous for businesses with a workforce that relies on remote or hybrid work models. The mobile integration ensures users can make and receive calls, check voicemail, and manage their schedules directly from their smartphones, maintaining productivity regardless of location.

The system also embraces advanced collaboration tools, such as video conferencing and instant messaging. These features promote a more dynamic interaction environment, fostering real-time communication among team members. Video conferencing capabilities allow for high-definition video quality and reliable connectivity, making virtual meetings more engaging and effective.

Security is another critical characteristic of Avaya 3.7. The platform includes enhanced encryption protocols to protect sensitive communications and ensure data integrity. With cybersecurity remaining a top concern for businesses, Avaya has prioritized the security of its communications solutions, safeguarding organizations' information against potential threats.

Furthermore, Avaya 3.7 benefits from the incorporation of AI and analytics. These technologies provide businesses with valuable insights into communication patterns and user behavior, enabling them to optimize their processes. The analytics can help identify areas for improvement and drive informed decision-making, thus enhancing overall efficiency.

Interoperability with existing systems is another hallmark of Avaya 3.7. The platform easily integrates with various applications and services, allowing businesses to leverage their current technology investments and create a cohesive communication ecosystem.

In summary, Avaya 3.7 stands out as a comprehensive communication solution that addresses the modern demands of the workplace. With its advanced call management features, mobility support, collaboration tools, strong security measures, and integration capabilities, Avaya 3.7 positions itself as a vital asset for organizations aiming to enhance their communication strategies and drive business success.
Top Page Image Contents