Chapter 7 Tutorials

1Click Configuration > Firewall > Add. In the From field select WAN.

In the To field select LAN.

Configure a name for the rule (WAN-to-LAN_H323 here).

Set the Destination to the H.323 device’s LAN IP address object (LAN_H323). LAN_H323 is the destination because the ZyWALL applies NAT to traffic before applying the firewall rule.

Set the Service to H.323. Click OK.

Figure 112 Configuration > Firewall > Add

7.11 How to Allow Public Access to a Web Server

This is an example of making an HTTP (web) server in the DMZ zone accessible from the Internet (the WAN zone). In this example you have public IP address

1.1.1.1that you will use on the ge3 interface and map to the HTTP server’s private IP address of 192.168.3.7.

Figure 113 Public Server Example Network Topology

 

DMZ

192.168.3.7

1.1.1.1

 

154

 

ZyWALL USG 2000 User’s Guide