Public zone firewall templates

DNS from any IP to any

Common services originating from all internal networks, private, DMZ, management and semi-private.

All other outgoing traffic is blocked.

The medium security policy for the public zone is the same as that of the high security policy.

The low security policy allows all the traffic allowed for medium security. In addition, all TCP, UDP packets from all networks are allowed to go out.

Table 31: Public high and medium security firewall rules

Rule Name

Action

Source

Destination

Service

Direction

Zone

Keep State

Description

 

 

 

 

 

 

 

 

 

InBoundPu

Permit

Any

PublicIP

IKE-IN

In

Public

no

Permit

blicAccess

 

 

 

IKE-AVAYA-

 

 

 

incoming

 

 

 

 

IN

 

 

 

VPN traffic

 

 

 

 

IPSEC-NAT

 

 

 

and ICMP

 

 

 

 

-T-IN

 

 

 

unreachable

 

 

 

 

AH/ESP

 

 

 

packet

 

 

 

 

 

 

 

 

 

 

 

 

ICMPDEST

 

 

 

 

 

 

 

 

UNREACH

 

 

 

 

 

 

 

 

ABLE

 

 

 

 

 

 

 

 

 

 

 

 

 

InBoundPu

Permit

Any

DMZNet

ICMPECHO

In

Public

Yes

Permit

blictoDMZA

 

 

 

REQUEST

 

 

 

incoming

ccess

 

 

 

SSH/

 

 

 

traffic to

 

 

 

 

TELNET

 

 

 

DMZ

 

 

 

 

FTP-CTRL

 

 

 

network

 

 

 

 

PASSIVEFT

 

 

 

 

 

 

 

 

P

 

 

 

 

 

 

 

 

HTTP/

 

 

 

 

 

 

 

 

HTTPS

 

 

 

 

 

 

 

 

DNS-TCP/

 

 

 

 

 

 

 

 

DNS-UDP

 

 

 

 

 

 

 

 

NETBIOS-N

 

 

 

 

 

 

 

 

S-TCP/UDP

 

 

 

 

 

 

 

 

NETBIOS-D

 

 

 

 

 

 

 

 

GM-TCP/

 

 

 

 

 

 

 

 

UDP

 

 

 

 

 

 

 

 

NETBIOS-S

 

 

 

 

 

 

 

 

SN-TCP/

 

 

 

 

 

 

 

 

UDP

 

 

 

 

 

 

 

 

POP3/

 

 

 

 

 

 

 

 

IMAP/SMTP

 

 

 

 

 

 

 

 

NNTP

 

 

 

 

 

 

 

 

 

 

 

 

 

InBoundPu

Deny

Any

Any

ANY

In

Public

No

Deny the

blicBlockAll

 

 

 

 

 

 

 

rest of traffic

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

OutBoundP

Permit

PublicIP

Any

IKE-OUT

Out

Public

no

Permit

ublicAccess

 

 

 

IKE-AVAYA-

 

 

 

outgoing

 

 

 

 

OUT

 

 

 

VPN traffic

 

 

 

 

IPSEC-NAT

 

 

 

 

 

 

 

 

-T-OUT

 

 

 

 

 

 

 

 

AH/ESP

 

 

 

 

 

 

 

 

ICMPDEST

 

 

 

 

 

 

 

 

UNREACH

 

 

 

 

 

 

 

 

ABLE

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

1 of 2

 

 

 

 

 

 

 

 

 

Issue 4 May 2005 299

Page 299
Image 299
Avaya 3.7 manual Public high and medium security firewall rules

3.7 specifications

Avaya 3.7 represents a significant evolution in unified communications technology, designed to enhance collaboration and streamline communication workflows for organizations of all sizes. As a cornerstone of Avaya's offerings, this version incorporates a range of features and improvements that cater to contemporary business needs, emphasizing flexibility, reliability, and seamless integration.

One of the most notable features of Avaya 3.7 is its robust call management capabilities. The platform allows users to manage calls effectively through a user-friendly interface, enabling intuitive functionalities such as drag-and-drop call handling, call forwarding, and conference calling. These features help employees stay connected, facilitating better communication and teamwork across departments.

In terms of mobility, Avaya 3.7 supports mobile applications that allow users to access the system remotely. This is particularly advantageous for businesses with a workforce that relies on remote or hybrid work models. The mobile integration ensures users can make and receive calls, check voicemail, and manage their schedules directly from their smartphones, maintaining productivity regardless of location.

The system also embraces advanced collaboration tools, such as video conferencing and instant messaging. These features promote a more dynamic interaction environment, fostering real-time communication among team members. Video conferencing capabilities allow for high-definition video quality and reliable connectivity, making virtual meetings more engaging and effective.

Security is another critical characteristic of Avaya 3.7. The platform includes enhanced encryption protocols to protect sensitive communications and ensure data integrity. With cybersecurity remaining a top concern for businesses, Avaya has prioritized the security of its communications solutions, safeguarding organizations' information against potential threats.

Furthermore, Avaya 3.7 benefits from the incorporation of AI and analytics. These technologies provide businesses with valuable insights into communication patterns and user behavior, enabling them to optimize their processes. The analytics can help identify areas for improvement and drive informed decision-making, thus enhancing overall efficiency.

Interoperability with existing systems is another hallmark of Avaya 3.7. The platform easily integrates with various applications and services, allowing businesses to leverage their current technology investments and create a cohesive communication ecosystem.

In summary, Avaya 3.7 stands out as a comprehensive communication solution that addresses the modern demands of the workplace. With its advanced call management features, mobility support, collaboration tools, strong security measures, and integration capabilities, Avaya 3.7 positions itself as a vital asset for organizations aiming to enhance their communication strategies and drive business success.