Foundry AR-Series Router User Guide

Step 14: Configure firewall policies for a group of mobile users to allow access to the local LAN (applicable only if firewall license is enabled):

Router1/configure/firewall corp#

Router1/configure/firewall corp# policy 1000 in user-group sales address any any 10.0.1.0 24

Router1/configure/firewall corp/policy 1000 in# exit Router1/configure/firewall corp#

NOTE: Be sure to match the user group name in the policy command with the name used in Step 4 (the dynamic IKE policy).

Step 15: Display firewall policies in the corp map (applicable only if firewall license is enabled).

Router1# show

firewall policy

corp

Advanced: S -

Self Traffic, F

-

Ftp-Filter, H - Http-Filter,

R -

Rpc-Filter, N -

Nat-Ip/Nat-Pool, L - Logging,

E -

Policy Enabled,

M

- Smtp-Filter

Pri

Dir Source

Addr

Destination Addr

Sport Dport Proto

Action Advanced

 

 

 

---

--- -----------

----------------

----------------- ----

15 - 34

© 2004 Foundry Networks, Inc.

June 2004

Page 259
Image 259
Foundry Networks AR3202-CL, AR3201-CL, AR1204, AR1216, AR1208 manual Foundry AR-Series Router User Guide