Page History

Add_workflow_for_techpubs

AUTH1	UserResourceIdentifier{userKey=8a00a0c86ca23f8a016cd6ed6fe900138a00a0c85f4199b1015f7edf811e000e, userName='null'}	JIRAIDAUTH	TP-548
REV5	UserResourceIdentifier{userKey=8a00a0c85b2726c2015b58aa779d00038a00a0c85f4199b1015f7ea6e836000d, userName='null'}
REV6	UserResourceIdentifier{userKey=8a00a0c85b2726c2015b58aa779d00038a00a0c85f4199b1015f7ea6e836000d, userName='null'}
REV3	UserResourceIdentifier{userKey=8a00a0c8601a1bc701602339d1190006, userName='null'}
REV4	UserResourceIdentifier{userKey=8a00a0c85b2726c2015b58aa779d00038a00a0c8652ba79201656dbe5f14001b, userName='null'}
REV1	UserResourceIdentifier{userKey=8a00a0c86b3e1ff4016b78bf44f70024, userName='null'}
REV2	UserResourceIdentifier{userKey=8a00a0c86d32712b016d406f77af0008=8a00a0c85b2726c2015b58aa779d0003, userName='null'}

The Firewall configuration page allows you to enable or disable firewall functions and set firewall log parameters.

Choose Security from the Configuration Menu.
Image Modified

Configure settings using the information in the following table as a guide. When you have finished configuring settings, click Submit to make your changes take effect.

Caption

0	Table
1	Standard Firewall Parameters

Item	Description
Enable TELNET access through LAN and WAN	Enables TCP destination port 23 connections to the system's LAN and WAN interfaces for telnet terminal management access. The telnet service is disabled on the system when this option is disabled. In the GUI, it can only be disabled. To enable it, edit fw_defs.conf in the configuration directory and run the config_fw script.
Enable Firewall for WAN	Select the Enable Firewall for WAN checkbox to enable or disable the system firewall.
Management WAN interface	Select the management WAN interface option to manage the EdgeMarc remotely. Select Any from the drop-down list to allow EdgeMarc to accept management traffic from all configured WAN networks.
Basic WAN Firewall Settings Enable or disable the management services allowed to the system from the WAN: • WAN access to the firewall—Management access from the LAN to these services is still enabled even if all checkboxes are deselected. • Provider/Subscriber access to the system—Management services to the system apply to both the provider and the subscriber interfaces. Deselecting a management service causes loss of access to the system from both the provider and the subscriber interfaces.
Allow HTTP Access Through the Firewall	Select the

Enable Firewall Logging

checkbox to

log information about packets to and through the system.

Tip: To configure the system to use an external syslog server:

• Choose Admin > System Configuration.

• Select the Remote System Logging checkbox and configure settings in the Remote System Logging window.

Refer to Configuring Remote System Logging.

allow HTTP system management from the WAN interface.
Set HTTP access port	Enter the HTTP connection port to connect to the system and use the system GUI.
Allow HTTPS Access Through the Firewall	Select the checkbox to allow HTTPS system management from the WAN interface.
Allow TELNET Access Through Firewall	Select the checkbox to allow Telnet system management from the WAN interface.
Allow SSH Access Through Firewall	Select the checkbox to allow SSH (version 2) system management from the WAN interface.
Allow SNMP Access Through Firewall	Select the checkbox to allow SNMP V1 and V3 system management from the WAN interface.
Enable Firewall Logging	Select the checkbox to enable logging for packets to and through the system.

Warning:

Warning
Because port scanning and login attacks are common when connected to a public network, logging is disabled by default. When enabling logging, use caution! Firewall logging may affect call quality and system performance. It may also use network bandwidth if system logging is enabled over the WAN.

Space shortcuts

Page tree

Versions Compared

Old Version 1

New Version Current

Key