2.
Now enter:
•
Name: SAT-ftp-inbound
•
Action: SAT
•
Service: ftp-inbound-service
3.
For Address Filter enter:
•
Source Interface: any
•
Destination Interface: core
•
Source Network: all-nets
•
Destination Network: wan_ip (assuming the external interface has been defined as
this)
4.
For SAT check Translate the Destination IP Address
5.
Enter To: New IP Address: ftp-internal
6.
New Port: 21
7.
Click OK
D. Traffic from an internal interface needs to be NATed through the public IPv4 address:
1.
Go to: Policies > Firewalling > Main IP Rules > Add > IP Rule
2.
Now enter:
•
Name: NAT-ftp
•
Action: NAT
•
Service: ftp-inbound-service
3.
For Address Filter enter:
•
Source Interface: dmz
•
Destination Interface: core
•
Source Network: dmznet
•
Destination Network: wan_ip
4.
For NAT check Use Interface Address
5.
Click OK
E. Allow incoming connections (SAT requires an associated Allow rule):
1.
Go to: Policies > Firewalling > Main IP Rules > Add > IP Rule
2.
Now enter:
•
Name: Allow-ftp
Chapter 6: Security Mechanisms
443
Summary of Contents for NetDefendOS
Page 30: ...Figure 1 3 Packet Flow Schematic Part III Chapter 1 NetDefendOS Overview 30 ...
Page 32: ...Chapter 1 NetDefendOS Overview 32 ...
Page 144: ...Chapter 2 Management and Maintenance 144 ...
Page 284: ...Chapter 3 Fundamentals 284 ...
Page 392: ...Chapter 4 Routing 392 ...
Page 419: ... Host 2001 DB8 1 MAC 00 90 12 13 14 15 5 Click OK Chapter 5 DHCP Services 419 ...
Page 420: ...Chapter 5 DHCP Services 420 ...
Page 573: ...Chapter 6 Security Mechanisms 573 ...
Page 607: ...Chapter 7 Address Translation 607 ...
Page 666: ...Chapter 8 User Authentication 666 ...
Page 775: ...Chapter 9 VPN 775 ...
Page 819: ...Chapter 10 Traffic Management 819 ...
Page 842: ...Chapter 11 High Availability 842 ...
Page 866: ...Default Enabled Chapter 13 Advanced Settings 866 ...
Page 879: ...Chapter 13 Advanced Settings 879 ...