FIREWALLS > Préciser des adresses dans vos policy
//Configurer des sous-réseaux:
//Mettre un /32 pour une seule machine
ns500_01->set address "Trust" "server" 10.1.2.5 255.255.255.255
ns500_01->set address "Untrust" "client" 10.1.3.0 255.255.255.0
//Ajouter des règles pour un serveur interne:
ns500_01->set policy from "Untrust" to "Trust" "client" "server" "HTTP" permit
ns500_01->set policy from "Untrust" to "Trust" "client" "server" "SMTP" permit
ns500_01->set policy from "Untrust" to "Trust" "client" "server" "POP3" permit
ns500_01->set policy from "Untrust" to "Trust" "client" "server" "PING" permit
ns500_01->set policy from "Untrust" to "Trust" "client" "server" "ANY" deny
Retour