Firewall

6

 

Configuring Firewall Rules to Control Inbound and Outbound Traffic

 

 

 

 

 

Security Levels and Predefined Zones

Security Level

Description

Predefined Zones

 

 

 

Trusted (100)

Highest level of trust.

LAN

 

By default, the DEFAULT VLAN is

 

 

mapped to the predefined LAN zone.

 

 

You can group one or more VLANs into a

 

 

Trusted zone.

 

 

 

 

VPN (75)

Higher level of trust than a public zone,

VPN

 

but a lower level of trust than a trusted

SSLVPN

 

zone.

 

 

 

This security level is used exclusively for

 

 

VPN connections. All traffic is encrypted.

 

 

 

 

Public (50)

Higher level of trust than a guest zone,

DMZ

 

but a lower level of trust than a VPN

 

 

zone.

 

 

 

 

Guest (25)

Higher level of trust than an untrusted

GUEST

 

zone, but a lower level of trust than a

 

 

public zone.

 

 

 

 

Untrusted (0)

Lowest level of trust.

WAN

 

By default, the WAN1 interface is

 

 

mapped to the WAN zone. If you are

 

 

using the secondary WAN (WAN2), you

 

 

can map it to the WAN zone or any other

 

 

untrusted zone.

 

 

 

 

Voice

Designed exclusively for voice traffic.

VOICE

 

Incoming and outgoing traffic is

 

 

optimized for voice operations. For

 

 

example, assign Cisco IP Phones to the

 

 

VOICE zone.

 

 

 

 

Cisco ISA500 Series Integrated Security Appliances Administration Guide

253

Page 253
Image 253
Casio ISA550WBUN3K9 manual Security Levels and Predefined Zones Description