3 wan to dmz & lan to dmz – Planet Technology MH-2001 User Manual

MH-2001 Multi-Homing Security Gateway User’s Manual

7.3 WAN To DMZ & LAN To DMZ

This section describes steps to create policies for packets and services from the WAN networks to the DMZ

networks. Please follow the same procedures for LAN networks to DMZ networks.

Enter [WAN To DMZ] or [LAN To DMZ] window:

Click WAN To DMZ under Policy menu to enter the WAN To DMZ window. The WAN To DMZ table will show

up displaying currently defined policies.

The fields in WAN To DMZ window:

„

Source: source networks, which are addresses specified in the WAN section of the Address

menu, or all the WAN network addresses.

„

Destination: destination networks, which are addresses specified in DMZ section of the Address

menu and Mapped IP addresses of the Virtual Server menu.

„

Service: services supported by servers in DMZ network.

„

Action: control actions, to permit or deny packets from WAN networks to DMZ travelling through

MH-2001.

„

Option: specify the monitoring functions of packets from WAN network to DMZ network travelling

through MH-2001.

„

Configure: modify settings or remove policies.

„

Move: this sets the priority of the policies, number 1 being the highest priority.

Adding a new WAN To DMZ Policy:

Example：Set a FTP Server under DMZ NAT Mode and restrict the download bandwidth from external

and MAX. Concurrent Sessions.

STEP 1﹒Set a FTP Server under DMZ, which IP is 192.168.3.2 (The DMZ Interface Address

is192.168.3.1/24)

- 244 -