Firewall Protection
134
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
LAN Users The settings that determine which computers on your network are
affected by this rule. The options are:
• Any. All
computers and devices on your LAN.
• Si
ngle address. Enter the required address in the Start field to
apply the rule to a single device on your LAN.
• Ad
dress range. Enter the required addresses in the Start and
Finish fields to apply the rule to a range of devices.
• Gro
up. Select the LAN group to which the rule applies. Use the
LAN Groups screen to assign computers to groups (see Manage
the Network Database on page 92). Groups apply only to IPv4
rules.
• IP Grou
p. Select the IP group to which the rule applies. Use the
IP Groups screen to assign IP addresses to groups. See Create
IP Groups on p
age 174.
LAN WAN rules
LAN DMZ rules
WAN Users The settings that determine which Internet locations are covered
by the rule, based on their IP address. The options are:
• Any. All
Internet IP addresses are covered by this rule.
• Si
ngle address. Enter the required address in the Start field.
• Ad
dress range. Enter the required addresses the Start and
Finish fields.
• IP Grou
p. Select the IP group to which the rule applies. Use the
IP Groups screen to assign IP addresses to groups. See Create
IP Groups on page 174.
LAN WAN rules
DMZ WAN rules
DMZ Users The settings that determine which DMZ computers on the DMZ
ne
twork are affected by this rule. The options are:
• Any. All computer
s and devices on your DMZ network.
• Single address. Enter the required address in the Start field to
apply the rule to a single computer on the DMZ network.
• Ad
dress range. Enter the required addresses in the Start and
Finish fields to apply the rule to a range of DMZ computers.
DMZ WAN rules
LAN DMZ rules
QoS Profile
or
QoS Priority
The priority assigned to IP packets of
this service. The priorities
are defined by Type of Service in the Internet Protocol Suite
standards, RFC 1349. The QoS profile determines the priority of a
service, which, in turn, determines the quality of that service for the
traffic passing through the firewall.
The VPN firewall marks the Type of Service (ToS) field as defined
i
n the QoS profiles that you create. For more information, see
Create Quality of Service Profiles for IPv4 Firewall Rules on
page 179 and Quality of Service Priorities for IPv6 Firewall Rules
on page 181.
Note: Th
ere are no default QoS profiles on the VPN firewall. After
you have created a QoS profile, it can become active only when
you apply it to a nonblocking inbound or outbound firewall rule.
Note: QoS profiles and QoS priorities do not apply to LAN DMZ
rules.
QoS Profile:
• IPv4 LAN WAN rules
• IPv4 DMZ WAN rules
Qos Priority:
• IPv6 LAN WAN rules
• IPv6 DMZ WAN rules
Table 32. Outbound rules overview (continued)
Setting Description Outbound Rules