D-Link DFL-1100 - Security Appliance Installation Manual - Firewall Policy

Other manuals for DFL-1100 - Security Appliance: Brochure & Specs, Manual, User Manual, User Manual, Manual

Manual is about: Network Security Firewall

Page of 24

Download

Print this page

Bookmark us

Firewall Policy

DFL-1100 Installation Guide

Firewall Policy

The DFL-1100 allows you to configure policies to

handle data being transmitted and recieved via the

various interfaces. The policy configuration window

can be found by going to the Firewall tab and the

Policy button is the default selection.

Adding a New Policy

1. Select the desired interfaces to create a policy for. For instance,

LAN > WAN

would create a policy for data from the

internal LAN to the Internet.

2. Click on the

Add new

link.

3. Fill in the appropriate values for the following options:

4. Click Apply to apply the settings or click Cancel to disregard the changes.

Name

Create a name for the policy. This name is used mainly as a rule reference in log data and for easy reference in

the policy list.

Action

Select the action to be performed with the specified data.

Source Nets

Specifies the sender span of IP addresses to be compared to the received packet. Leave this blank to match

everything.

Source

Users/Groups

Here you can specify that a username, group, or any authenticated user must be the source for the action to

occur. A list of usernames can be entered, separated by a comma, or write Any to represent any authenticated

user. If it’s left blank there is no need for authentication for this policy.

Destination Nets

Specifies the span of IP addresses to be compared to the destination IP of the received packet. Leave this blank

to match everything.

Destination

Users/Groups

A specific username can be specified for this policy to match. A list of usernames can be entered, separated by

a comma, or write Any for any authenticated user. If it’s left blank there is no need for authentication for this

policy.

Service

A predefined service can be selected from the dropdown menu or a custom service can be created.

Schedule

Select what schedule should be used for this policy to match. Choose Always for no scheduling.

« ‹ Prev 15 16 17 18 19 20 21 Next › »

Summary of DFL-1100 - Security Appliance

Page 1
Dfl-1100 installation guide package contents • d-link ® dfl-1100 n et d efend ™ network security firewall • cat5 utp straight-through ethernet cable • cat5 utp crossover cable • rs-232 console interface cable • cd-rom (containing manual) • power cord system requirements • computer with an ethernet a...
Page 2: Front Panel
2 hardware overview dfl-1100 installation guide front panel hardware overview rear panel led function link solid green indicates a good connection on the associated port number. Act the act led flashes during data transmission on the associated port number. Power a solid light indicates a proper con...
Page 3: Hardware Installation
3 hardware installation dfl-1100 installation guide hardware installation 1. Connect the power cord to the power connector on the rear panel of the dfl-1100. Plug the other end of the power cord to a wall outlet or power strip. 2. Turn on the power switch on the rear panel of the dfl-1100. The power...
Page 4: The Setup Wizard
4 the setup wizard dfl-1100 installation guide the setup wizard the dfl-1100 provides web based configuration. You can configure your dfl-1100 using internet explorer or netscape navigator version 6.0 or above with javascript enabled. To access the configuration screen, launch your web browser and e...
Page 5: Step 2 - Set Timezone
5 the setup wizard dfl-1100 installation guide step 2 - set timezone select your time zone and daylight savings time settings. Click next to continue. Step 3 - configure wan interface select the type of internet connection that you have. If you are unsure of which to select, please contact your inte...
Page 6: Step 3 - Static Ip
6 the setup wizard dfl-1100 installation guide step 3 - static ip if you selected static ip, enter the ip address information provided by your internet service provider. You must complete all of the fields except for secondary dns server. Click next and continue to step 4 on page 8. Step 3 - pppoe i...
Page 7: Step 3 - Big Pond
7 the setup wizard dfl-1100 installation guide step 3 - big pond if you selected big pond, fill out the username and password and then retype the password. This information is provided to you from your internet service provider. Click next to continue. Step 3 - pptp if you selected pptp, you will ne...
Page 8: Server
8 the setup wizard dfl-1100 installation guide step 4 - set up built-in dhcp server • disable dhcp server: if this option is disabled, then lan clients must be configured with an ip address manually. • enable dhcp server: when enabled, this allows the dfl-1100 to automatically provide the necessary ...
Page 9
9 the setup wizard dfl-1100 installation guide a message will appear indicating that the unit is restarting. After you’ve configured the unit, you will need to reconnect to the web browser interface. Type in https://192.168.1.1 be sure to include the“s”in https. Type in the admin username and the pa...
Page 10: Installation Is Complete!
10 the setup wizard dfl-1100 installation guide installation is complete! You should see the system status screen after reconnecting to the dfl-1100..
Page 11: Dfl-1100
11 activating changes dfl-1100 installation guide activating changes to the d-link ® dfl-1100 when changes are made to the configuration of the dfl-1100, two new buttons appear below the existing menu buttons. Once all changes to the configuration of the dfl-1100 have been made, click on the activat...
Page 12: Administration Settings
12 administration settings dfl-1100 installation guide administration settings the administration settings screen can be found by clicking on the system tab and selecting the administration button. By default, administrative access is limited to the lan interface. The selection you made during the s...
Page 13
13 administration settings dfl-1100 installation guide you may selectively add administration features to any of the interfaces. To do so, click on the desired interface ( wan , dmz , or eth4 ) under the heading titled add administrative access via: or click on edit next to an interface that has alr...
Page 14: Wan Interface Settings
14 wan interface settings dfl-1100 installation guide wan interface settings when you first connect to the dfl-1100, the setup wizard guides you through configuring the basic firewall settings. Your wan settings are configured at that time. Should you need to modify these settings, go to the system ...
Page 15: Dhcp
15 wan interface settings dfl-1100 installation guide dhcp if using dhcp, there is no need to enter any values. Pppoe if you are using a pppoe connection, you must enter the username and password, retype the password, and enter any other information your internet service provider (isp) requires. Use...
Page 16: Logging
16 logging dfl-1100 installation guide logging to go to the logging configuration screen, select the system tab and click on the logging button. Logging allows you to track events such as startup, shutdown, and the opening and closing of connections. The startup and shutdown events are always logged...
Page 17: Time
17 time dfl-1100 installation guide time the time configuration screen can be found by selecting the system tab and then clicking on the time button. The time can be set manually or synchronized to an internet network time server. Changing the time zone 1. Select the correct time zone from the dropd...
Page 18: Firewall Policy
18 firewall policy dfl-1100 installation guide firewall policy the dfl-1100 allows you to configure policies to handle data being transmitted and recieved via the various interfaces. The policy configuration window can be found by going to the firewall tab and the policy button is the default select...
Page 19: Adding A New Mapping
19 port mapping dfl-1100 installation guide port mapping / virtual servers the port mapping / virtual servers configuration section allows you to configure virtual servers such as web servers. Mappings are read from top to bottom. The first matching mapping is carried out. The port mapping / virtual...
Page 20: Ipsec Vpn Configuration
20 ipsec vpn configuration dfl-1100 installation guide ipsec vpn configuration the vpn configuration screen can be found by going to the firewall tab and selecting the vpn button. Creating a roaming users vpn tunnel 1. Click on the add new link. 2. Enter a name for the new tunnel in the name field. ...
Page 21
21 ipsec vpn configuration dfl-1100 installation guide ipsec vpn between two networks users can connect from an internal network at one location to an internal network at another location via the internet. Communication between the two networks takes place in an encrypted vpn tunnel that connects tw...
Page 22: Backup
22 backup dfl-1100 installation guide backup to reach the backup screen, go to the tools tab and select the backup button. The backup option allows the administrator the ability to backup and restore the configuration of the dfl-1100. The configuration file stores system settings, ip addresses, addr...
Page 23: Restart / Reset
23 restart/reset dfl-1100 installation guide restart / reset the restart / reset window can be found by going to the tools tab and clicking on the reset button. Restarting the dfl-1100 1. Select quick or full restart. A quick restart will reset the interfaces and re-read the configuration. A full re...
Page 24: Technical Support
Technical support dfl-1100 installation guide you can find software updates and user documentation on the d-link ® support website. D-link ® provides free technical support for customers within the united states and within canada for the duration of the warranty period on this product. U.S. And cana...