CHAPTER 8: About Security Policies
160
Vcontroller
You can use Vcontroller to create and combine any number
of policies on a Firebox Vclass appliance, enabling that
appliance to fully protect and enhance your network traf-
fic.
Security policy components
Every security policy is composed of two basic compo-
nents: the
traffic specifications
and an
action
.
Traffic specifications
The
traffic specification
is one of the basic components of a
security policy. It defines the source, destination, and other
attributes of every data stream traveling through the Fire-
box.
Traffic specifications incorporate the following compo-
nents:
Source
Refers to the origin of a stream of data whether it
originates in your private network, the DMZ, or an
external network.
Destination
Refers to the final destination for traffic that will be
passed through the Firebox Vclass appliance by
that policy. It can refer to a particular interface.
Service
The type of traffic in this data. For example, HTTP,
SMTP (email), FTP, or Telnet.
Incoming interface
Which interface on the Firebox Vclass appliance the
data is coming into: Public, Private, or DMZ.
Tenant
Which tenant is affected, whether a VLAN or user-
defined domain tenant.
Summary of Contents for Firebox V10
Page 1: ...WatchGuard Firebox Vclass User Guide Vcontroller 5 0 ...
Page 32: ...xxxii Vcontroller ...
Page 40: ...CHAPTER 1 Introduction 8 Vcontroller ...
Page 52: ...CHAPTER 2 Service and Support 20 Vcontroller ...
Page 70: ...CHAPTER 3 Getting Started 38 Vcontroller ...
Page 110: ...CHAPTER 4 Firebox Vclass Basics 78 Vcontroller ...
Page 190: ...CHAPTER 7 Using Account Manager 158 Vcontroller ...
Page 268: ...CHAPTER 9 Security Policy Examples 236 Vcontroller ...
Page 410: ...CHAPTER 14 Monitoring the Firebox Vclass 378 Vcontroller ...
Page 456: ...CHAPTER 18 Using the Diagnostics CLI Feature 424 Vcontroller ...