Filter
Top Products
9-20 Avaya P550R, P580, P880, and P882 Multiservice Switch User Guide, v5.3.1
Chapter
Outside networks need access to a web server and should be denied
access to any other resource within the Inside network.
Hosts on the Inside networks should have full access to all other
resources on the Inside.
The Web server itself should not be able to establish any new
connections to the Outside but should be able to pass traffic to the
other Inside networks
Assume the following abbreviations:
WS = Web Server.
IN = Inside Networks
ON = Outside Networks
Any = Both Inside and Outside Networks
The rules for implementing the above restrictions would be as
follows:
S Y S M O N
Outside Network
Network Configuration
Inside Network
with Web Server
Other Inside Networks
Table 6-16.
Rule # Rule TCP
Established
1 allow Any to call WS dest port 80 Un-Checked
2 allow WS to respond Checked
3 allow WS to IN Un-Checked
4 deny WS to Any (Outside) Un-Checked
5 allow IN to Any Un-Checked
6 deny remaining traffic from Outside to Any Un-Checked