
Firewall configuration | Adding firewall policies |
|
|
Figure 5: Adding a NAT/Route policy
Action
Select how you want the firewall to respond when the policy matches a connection attempt.
ACCEPT | Accept the connection. If you select ACCEPT, you can also configure NAT |
| and Authentication for the policy. |
DENY | Deny the connection. The only other policy option that you can configure is |
| Log Traffic, to log the connections denied by this policy. |
ENCRYPT | Make this policy an IPSec VPN policy. If you select ENCRYPT, you can |
| select an AutoIKE Key or Manual Key VPN tunnel for the policy and |
| configure other IPSec settings. You cannot add authentication to an |
| ENCRYPT policy. ENCRYPT is not available in Transparent mode. See |
| “Configuring encrypt policies” on page 193. |
141 |