Semi-private zone firewall templates

Table 36: Private low security firewall rules

Rule Name

Action

Source

Destination

Servi

Direction

Zone

Keep

Description

 

 

 

 

ce

 

 

State

 

 

 

 

 

 

 

 

 

 

InBoundPriv

Deny

Any

ManagementNet

Any

In

Private

No

Traffic to

ateDenyAcc

 

 

 

 

 

 

 

Managemen

ess

 

 

 

 

 

 

 

tNet is

 

 

 

 

 

 

 

 

denied.

 

 

 

 

 

 

 

 

 

InBoundPriv

Permit

Any

Any

Any

In

Private

Yes

Permit WI/

atePermitAll

 

 

 

 

 

 

 

VMGR and

 

 

 

 

 

 

 

 

VPN, clear

 

 

 

 

 

 

 

 

traffic to

 

 

 

 

 

 

 

 

PUBLIC

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

OutBoundPri

Deny

DMZNet

Any

Any

Out

Private

No

Deny traffic

vateDenyAcc

 

 

 

 

 

 

 

from and

ess

 

 

 

 

 

 

 

SemiPrivate

 

 

 

 

 

 

 

 

Net

 

 

 

 

 

 

 

 

 

OutBoundPri

Permit

Any

Any

Any

Out

Private

Yes

Permit

vateDenyAll

 

 

 

 

 

 

 

incoming

 

 

 

 

 

 

 

 

VPN

 

 

 

 

 

 

 

 

 

Semi-private zone firewall templates

A semi-private network interface provides connection to a network whose equipment can be made physically secure, but whose medium is vulnerable to attack (such as a Wireless network used within a corporation’s Private network infrastructure).

Because wireless connections cannot be easily controlled, strict firewall policy should be enforced on the semi-private interface to limit the access from the semi-private zone to VPN traffic. Clear traffic to Private and Management zones is not allowed. Common services to DMZ are allowed and clear traffic to Public is allowed.

The semi-private high security rules are enforced for both incoming and outgoing packets as follows.

Incoming traffic to the semi-private zone allowed includes:

VPN traffic. The VPN tunnel endpoints could be semi-private IP or Public IP.

Ping, DNS

ICMP unreachable packets

The following clear traffic is allowed

The source is semi-private and the destination is DMZ servers, with the following common services: PING, FTP control, Passive Data FTP, SSH, Telnet, HTTP, HTTPs, POP3, IMAP, SMTP, and NNTP.

Issue 4 May 2005 305

Page 304 Page 306
Page 305
Image 305
Avaya 3.7 manual Semi-private zone firewall templates, Private low security firewall rules
Page 304 Page 306

3.7 specifications

Avaya 3.7 represents a significant evolution in unified communications technology, designed to enhance collaboration and streamline communication workflows for organizations of all sizes. As a cornerstone of Avaya's offerings, this version incorporates a range of features and improvements that cater to contemporary business needs, emphasizing flexibility, reliability, and seamless integration.

One of the most notable features of Avaya 3.7 is its robust call management capabilities. The platform allows users to manage calls effectively through a user-friendly interface, enabling intuitive functionalities such as drag-and-drop call handling, call forwarding, and conference calling. These features help employees stay connected, facilitating better communication and teamwork across departments.

In terms of mobility, Avaya 3.7 supports mobile applications that allow users to access the system remotely. This is particularly advantageous for businesses with a workforce that relies on remote or hybrid work models. The mobile integration ensures users can make and receive calls, check voicemail, and manage their schedules directly from their smartphones, maintaining productivity regardless of location.

The system also embraces advanced collaboration tools, such as video conferencing and instant messaging. These features promote a more dynamic interaction environment, fostering real-time communication among team members. Video conferencing capabilities allow for high-definition video quality and reliable connectivity, making virtual meetings more engaging and effective.

Security is another critical characteristic of Avaya 3.7. The platform includes enhanced encryption protocols to protect sensitive communications and ensure data integrity. With cybersecurity remaining a top concern for businesses, Avaya has prioritized the security of its communications solutions, safeguarding organizations' information against potential threats.

Furthermore, Avaya 3.7 benefits from the incorporation of AI and analytics. These technologies provide businesses with valuable insights into communication patterns and user behavior, enabling them to optimize their processes. The analytics can help identify areas for improvement and drive informed decision-making, thus enhancing overall efficiency.

Interoperability with existing systems is another hallmark of Avaya 3.7. The platform easily integrates with various applications and services, allowing businesses to leverage their current technology investments and create a cohesive communication ecosystem.

In summary, Avaya 3.7 stands out as a comprehensive communication solution that addresses the modern demands of the workplace. With its advanced call management features, mobility support, collaboration tools, strong security measures, and integration capabilities, Avaya 3.7 positions itself as a vital asset for organizations aiming to enhance their communication strategies and drive business success.
Top Page Image Contents