
Black Box LR11xx Series Router Configurations Guide
Step 10.1: Configure firewall policies to allow IKE negotiation through untrusted interface (applicable only if firewall license is also enabled)
Black Box1/configure> firewall internet
Black Box1/configure/firewall internet> policy 1000 in service ike self Black Box1/configure/firewall internet/policy 1000 in> exit
Black Box1/configure/firewall internet> exit
Step 10.2: Configure firewall policies to allow desired services through untrusted interface to manage the router (applicable only if firewall license is also enabled)
Black Box1/configure> firewall internet |
|
|
|
Black Box1/configure/firewall internet> | policy 1001 in | service snmp self | |
Black Box1/configure/firewall internet/policy 1001 | in> | exit | |
Black Box1/configure/firewall internet> | policy 1002 in | service telnet self | |
Black Box1/configure/firewall internet/policy 1002 | in> | exit | |
Black Box1/configure/firewall internet> | policy 1003 in | protocol icmp self | |
Black Box1/configure/firewall internet/policy 1003 | in> | exit | |
Black Box1/configure/firewall internet> | exit |
|
|
Step 10.3: Display firewall policies in the internet map (applicable only if firewall license is enabled)
Black Box1> show firewall policy internet
Advanced: S - Self Traffic, F -
R-
Pri | Dir | Source Addr | Destination Addr | Sport | Dport | Proto | Action Advanced |
1000 | in | any | any | ike |
|
| PERMIT SE |
1001 | in | any | any | snmp |
|
| PERMIT SE |
1002 | in | any | any | telnet |
|
| PERMIT SE |
1003 | in | any | any | any | any | icmp | PERMIT SE |
1024 | out | any | any | any | any | any | PERMIT SE |
Step 10.4: Display firewall policies in the internet map in detail (applicable only if firewall license is enabled)
26