LANCOM Reference Manual LCOS 3.50 Chapter 8: Firewall
128
Firewall
action sets. If the same trigger is used for several action sets, the
sequence of action sets can be adjusted.
In section ’How the LANCOM Firewall inspects data packets’ →page 115 we
have already described that in the end the lists for checking data packets are
created from Firewall rules. Thus the extension of the block diagram looks like
as follows:
Connection
The connection of a Firewall rule defines to which data packets the rule should
refer to. A connection is defined by its source, its destination and the used
services. The following details can be used to specify the source or destina-
tion:
All stations
Firewall / IDS / DoS / QoS
IP router
LAN bridge with “isolated mode”
Virtual LANs (VLAN)
N:N mapping
ISDN
ADSL
DSL
LAN / Switch
WLAN-1
DMZ
DSLoL
Configuration &
management:
WEBconfig, Telnet,
VPN / PPTP
DHCP client / PPP
IP module: NetBIOS, DNS,
DHCP server, RADIUS, RIP,
NTP, SNMP, SYSLOG, SMTP
IPX router
LAN interfaces
WAN interfaces
IP masquerading
VPN services
LANCAPI
connection via
LAN/Switch
WLAN-2
Filter
Filter
Filter
IPX over PPTP/
VPN
Structure of the Firewall rules
Host?
Port?
Connection?
Filter?
Firewall rule
Packet action
Limit/trigger
Condition
Connection
Other
QoS
Encryption:
802.11i/WPA/WEP