[Report an Error]

Configuring Security Zones—Quick Configuration

You can use J-Web Quick Configuration to quickly configure security zones. See the figure below.

Figure 51: Quick Configuration Zones Page

Quick Configuration Zones Page

To configure security zones with Quick Configuration:

  1. Select Configuration > Quick Configuration > Zones.
  2. Click Add to create new zones.
  3. Fill the form as shown in the table below.
  4. Click one of the following buttons:

Table 121: Security Zone Options

Option

Description

Zone Name

Name of the zone for which you are enabling policies

Traffic Control Options

Asymmetric VPN—Allows any incoming VPN traffic in a zone to match any applicable VPN session, regardless of the origin for the original VPN tunnel. This feature allows free routing of VPN traffic between two or more sites when there are multiple possible paths for VPN traffic.

TCP RST—Select this check box to enable the tcp-rst feature, which sends a TCP segment with the RESET flag set to 1 in response to a TCP segment with any flag set other than SYN and which does not belong to an existing session

Host Inbound Traffic Option

System Services—Configure services to permit inbound traffic of the selected type to be transmitted to hosts within the zone, provided there is a policy that permits it. You can select Allow All to permit all services, or you can select Except and Allow Selected Servicesto exclude selected services.

Protocols—Configure protocols to permit inbound traffic of the selected type to be transmitted to hosts with the zone. You can select “Allow All” to permit all protocols, or use the “Except” and “Allow Selected Protocols” options to exclude selected protocols.

Interfaces Configuration

Select the interfaces that you want included in the security zone.


[Report an Error]