Defining Network Configuration

Step

Action

From the Managed Firewall PRN(To get to this screen, select Inventory under the MFW  tab for the Products module.  For more information about this screen, click here.) screen, click the ID of the Open firewall for which you want to define network configuration.

Result:  The system takes you to the Modify Managed Firewall Details screen.

From the Functions section on the left-hand side of the screen, click Initial Setup.

Result:  The system takes you to the Initial Setup screen.

From the Form Name list at the bottom of the screen, click Network Configuration.

Result:  The system takes you to the Network Configuration screen.

Will you use a template to define network configuration?

In the DNS Servers fields, if applicable, type the IP address(An IP address is the unique identifier for a particular machine on an IP-based network such as the Internet.  Every computer on the network must have a unique IP address.  IP addresses are made up of 32 bits and written as four sets of numbers between 0 and 255, separated by a period, for example 256.43.7.25.) for the primary and secondary servers your network uses to resolve IP addresses to domain names.

In the Public IP Address field, type the IP address(An IP address is the unique identifier for a particular machine on an IP-based network such as the Internet.  Every computer on the network must have a unique IP address.  IP addresses are made up of 32 bits and written as four sets of numbers between 0 and 255, separated by a period, for example 256.43.7.25.) the firewall will show to hosts outside the firewall.

In the Public IP Netmask field, type the subnet mask(subnet masks interpret IP addresses on the basis of number of bits allocated to host and network location.) for your organization's network.  This is the value the firewall shows to hosts outside the firewall.

From the Public Interface drop-down list, select the kind of interface between the firewall and the Internet or outside network.

If your network uses vrrp(Virtual Redundant Routing Pair), type the main VIP(Virtual IP address) to be used for hosts outside the firewall in the Public VIP field, and the main IP address(An IP address is the unique identifier for a particular machine on an IP-based network such as the Internet.  Every computer on the network must have a unique IP address.  IP addresses are made up of 32 bits and written as four sets of numbers between 0 and 255, separated by a period, for example 256.43.7.25.), based on its URL(Universal Resource Locator - A formal name for an Internet address.) and Domain Name, for the standby firewall pair to be used for hosts outside the firewall in the Public Standby IP field.

In the Protected IP Address field, type the IP address(An IP address is the unique identifier for a particular machine on an IP-based network such as the Internet.  Every computer on the network must have a unique IP address.  IP addresses are made up of 32 bits and written as four sets of numbers between 0 and 255, separated by a period, for example 256.43.7.25.) the firewall will show to hosts inside the firewall.

In the Protected IP Netmask field, type the subnet mask(subnet masks interpret IP addresses on the basis of number of bits allocated to host and network location.) for your organization's network.  This is the value the firewall shows to hosts inside the firewall.

From the Protected Interface drop-down list, select the kind of interface between the firewall and the network or host behind the firewall.

If your network uses vrrp(Virtual Redundant Routing Pair), type the main VIP(Virtual IP address) to be used for hosts inside the firewall in the Protected VIP field, and the main IP address(An IP address is the unique identifier for a particular machine on an IP-based network such as the Internet.  Every computer on the network must have a unique IP address.  IP addresses are made up of 32 bits and written as four sets of numbers between 0 and 255, separated by a period, for example 256.43.7.25.), based on its URL(Universal Resource Locator - A formal name for an Internet address.) and Domain Name, for the standby firewall pair to be used for hosts inside the firewall in the Protected Standby IP field.

If your firewall includes a DMZ(DeMilitarized Zone), provide the appropriate information in the DMZ IP Address, DMZ IP Netmask, DMZ Interface, DMZ VIP, and DMZ standby IP fields.

In the Firewall Default Route IP field, type the IP address(An IP address is the unique identifier for a particular machine on an IP-based network such as the Internet.  Every computer on the network must have a unique IP address.  IP addresses are made up of 32 bits and written as four sets of numbers between 0 and 255, separated by a period, for example 256.43.7.25.) you want the firewall to expose by default to the external network or Internet.

In the Out-of-band Access Phone Number fields, type the telephone number users will be able to dial to access your firewall.

In the Special Cabling Needs box, type instructions for any special cabling the firewall will require for network configuration.

In the Comments box, type any additional information you want to include for proper configuration of your firewall network configuration.

Click .

Result:  The system attempts to save the configuration information and associate it with the firewall before returning you to the Initial Setup screen.  The Network Configuration option at the bottom of the screen should now have a status of Completed.