Firewall Protection
162
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
Tip: If you arrange with your ISP to have more than one public IP address for
your use, you can use the additional public IP addresses to map to
servers on your LAN or DMZ. One of these public IP addresses is used
as the primary IP address of the router that provides Internet access to
your LAN computers through NAT. The other addresses are available to
map to your servers.
To configure the VPN firewall for additional IP addresses:
1. Select Security > Firewall. Th
e Firewall submenu tabs display.
2. If
your server is to be on your LAN, click the LAN WAN Rules submenu tab. (If your server
is to be on your DMZ, click the DMZ WAN Rules submenu tab.)
3. In
the upper right of the LAN WAN Rules screen, the IPv4 radio button is selected by default.
The screen displays the IPv4 setting.
Click the Add t
able button under the Inbound Services table. The Add LAN WAN Inbound
Service screen displays:
Figure 92.
4. From the Service drop-down list, select HTTP for a web server.
5. From
the Action drop-down list, select ALLOW Always.
6. In
the Send to LAN Server field, enter the local IP address of your web server (192.168.1.2
in this example).
7. From
the WAN Destination IP Address drop-down list, select the web server. In this
example, the secondary 192.168.50.1 (WAN2) address is shown. You first need to define