|
1. Prohibit the host A from accessing the external network Fill in the host address of intranet A at the source address, and fill in the destination address without filling in all external networks. Action selection blocking. Direction selection forwarding.
2. Prohibit the external network from accessing the intranet server Fill in the destination address of the intranet server, and the source address does not represent all external IP addresses. Action blocking, direction forwarding.
3. Access routes are prohibited except for allowing external network IPs First, make a policy to block all public network access routes, and then make a policy to allow an external network access route. The first strategy: action selection blocking, because it is the external network incoming route, so the direction is selected, the source address is not filled in to represent all external network IPs, and the destination address is filled in the routing address. The second policy: the action is allowed, the direction is selected, the source address is filled in the public network IP that allows access routes, and the destination address is filled in the route address.
4. Access to the private network server is prohibited except for the external network IP address First, make a policy to block all external networks from accessing the internal server, and then make a policy to allow an external network to access the server. The first strategy: action selection blocking, direction forwarding. The source address does not represent all public network IPs, and the destination address is filled in the server address. The second policy: Allow action selection, direction forwarding, fill in the source address to allow the external network to access the server IP, and fill in the server address at the destination address.
5. Prohibit the external network from accessing a port of the intranet server If you choose one of the three protocols, tcp, udp, or tcp+udp, you can fill in the port. Action selection blocking, direction forwarding, source address does not fill in all external network IPs, destination address is filled in server address, destination port is prohibited from accessing.
6. Prohibit a port of the external network from accessing a port of the private network server If you choose one of the three protocols, tcp, udp, or tcp+udp, you can fill in the port. Action selection blocking, direction forwarding, source address does not fill in all external network IPs, destination address fills in server address, source port fills in a port on the external network, destination port fills in a server port.
Settings page
| 
Posted on 2024-8-10 21:01:26
|
|
|
|
Landlord|
Posted on 2024-8-10 21:03:29
|
