Access Rules | Cisco Systems RV320K9NA, RV325K9NA instruction

7	Firewall
	Firewall
	Access Rules

•Remote Management—Allows remote management of the device when enabled. The port is 443 by default. It can be changed to any user-defined port. The string will be https://<wan-ip>:<remote-management-port>

•Multicast Pass Through—Allows multicast messages to pass through the device.

•HTTPS—Hypertext Transfer Protocol Secure is a communications protocol for secure communication over a computer network, with especially wide deployment on the Internet.

•SSL VPN—Allows SSL VPN connections.

•SIP ALG—Application layer gateway that augments a firewall or NAT. It allows customized NAT traversal filters to be plugged into the gateway to support address and port translation for SIP control/data protocols.

•UPnP—Universal Plug and Play is a set of networking protocols that permits network devices, such as personal computers, printers, Internet gateways, Wi-Fi access points, and mobile devices, to seamlessly discover each other's presence on the network and establish functional network services for data sharing and communications.

Restricting Web Features

To restrict Web Java, Cookies, ActiveX, or Access to HTTP Proxy Servers features, select the check box.

To allow only the selected features (Java, Cookies, ActiveX, or Access to HTTP

Proxy Servers) and restrict all others, enable Exception.

Configuring Trusted Domain Names

To add trusted domains, click Add and enter the Domain Name.

To edit a trusted domain, click Edit and modify the Domain Name.

Access Rules

Access rules limit access to the subnetwork by allowing or denying access by specific services or devices identified by their IP address.

To open this page, select Firewall > Access Rules in the navigation tree.

To add or edit a service, click Service Management. This feature is described in Adding or Editing a Service Name.

76	Cisco Small Business RV320/RV325 Administration Guide

Image 76

Cisco Systems RV320K9NA, RV325K9NA manual Access Rules, Configuring Trusted Domain Names

Contents

Administration Guide 78-20928-02 Getting Started SetupSystem Summary Contents DhcpSystem Management Port Management VPN FirewallCertificate Management 101 Contents Log 107 SSL VPN 111Wizard 117 User Management 119 Using the Getting Started Window Getting Started Features of the User Interface Troubleshooting TipsNavigation Pop-Up Windows Help Logout Getting Started System Summary System Information Port Activity Configuration WizardPort Information detail WAN Information IPv4 and IPv6DMZ Information VPN Setting Status Security Status SSL VPN Status Log Setting StatusPptp Tunnels Available-PPTP tunnels available Log Setting Status Setup Network IP Mode Adding or Editing an IPv4 Network WAN1 or WAN2 Port SettingsEditing the IPv6 Address Prefix Obtain an IP Automatically WAN Connection Settings appearsLAN Prefix Assignment Static IP Subnet Mask IPv4-Subnetwork mask PPPoE Setup Transparent Bridge IPv4 Stateless Address Autoconfiguration IPv6 IPv6 in IPv4 Tunnel IPv6 6to4 Tunnel IPv6 6rd Configuration Mode IPv6 Rapid Deployment 6rd Tunnel IPv6 USB1 or USB2 Port Settings 3G/4G Connection Setting Failover and Recovery Setup DMZ Enable Password To change the username or password Choose SetupPassword Time DMZ Host Configuring Port ForwardingPort Forwarding Adding or Editing a Service Name Click Setup Forwarding Configuring Port TriggeringDeleting a Table Entry To open this page, select Setup Port Address Translation Port Address Translation Setting Up One-to-One NAT Adding or Editing a Service Name MAC Address Cloning Assigning Dynamic DNS to a WAN Interface Configuring IPv4 Dynamic Routing Configuring Dynamic RoutingAdvanced Routing Configuring IPv6 Dynamic Routing Configuring Static RoutingPrefix Length IPv6 only-IPv6 prefix length Click Enable Inbound Load Balance Inbound Load Balance USB Device Update Dhcp Configuring Dhcp for IPv4 Dhcp SetupChoose Vlan or Option Configuring Dhcp for IPv6 Enter the IPv6 Address Enter the Prefix Length Viewing the Dhcp Status Option MAC Address IPv4 only-MAC address of a client Bind IP Addresses by Discovery IP and MAC BindingBind IP Addresses Manually DNS Local Database Using the Static IP List to Block DevicesEdit or Delete Bound Entries Router Advertisement IPv6 Add, Edit, or Delete Local DNS Entries Lifetime Dhcp Dual WAN Connections Max Bandwidth Provided by ISP Network Service Detection System Management Adding or Editing a Service Bandwidth Management Configure Priority Interface-Interface that supports the serviceMaximum Bandwidth Provided by ISP Bandwidth Management Type Configuring Snmp Snmp Configuring SNMPv3 Discovery-Bonjour Lldp Properties Using Diagnostics Factory Default Language Selection or Language Setup Firmware UpgradeNavigate to System Management Language Selection Restart Navigate to System Management Language SetupEnter the New Language Name Backup and Restore Restoring the Settings from a Configuration FileBacking Up Configuration Files and Mirror Files System Management Restart Configuration Backing Up the Firmware to a USB Flash Drive Sanitizing the ConfigurationCopying the Mirror File to the Startup File System Management Configuring the Ports Port Management Port Status Port Management Traffic Statistics Vlan Membership QoSCoS/DSCP Setting Dscp Marking 802.1X Configuration Enter the Radius Secret Port Management Enabling Firewall Features General Access Rules Configuring Trusted Domain Names Adding an Access Rule to the IPv6 Access Rule Table Adding an Access Rule to the IPv4 Access Rule TableSelect Log packets matching this rule or No Log Content Filter Blocking Forbidden DomainsSelect Block Forbidden Domains Blocking Website Keywords Select Accept Allowed Domains Accepting Allowed DomainsScheduling Firewall VPN Summary VPN Group VPN Status Connection Table Gateway to Gateway Add a New Tunnel Local Group Setup Keying Mode = Manual or IKE with Preshared Key Keying Mode = IKE with Certificate Remote Group Setup IPSec Setup VPN VPN VPN Client to Gateway Configure Tunnel or Group VPN Interface-WAN port Configuring Easy VPN Local Group Setup Remote Client Setup for Single User VPN IPSec Setup VPN VPN VPN Passthrough Pptp Server Certificate Management My Certificate Exporting or Displaying a Certificate or Private Key Importing a 3rd-party or Self-signed Certificate Trusted SSL Certificate Trusted IPsec Certificate Certificate Generator CSR Authorization Key Encryption Length-Length of the key 106 Configuring the System Log Servers Configuring the System Log Send SMSSystem Log Configure email Notification Log Configure the Logs Processes System StatisticsAdditional Information Log Buttons SSL VPN Status Group Management Delete a Group Add or Edit a Group Internet Services Microsoft Terminal Resource Management Remote Desktop Advanced Setting Basic Setup Access Rule Setup Wizard User Management User Management Where to Go From Here Revised June 24 78-20928-02