Firewall Scenario

From Antcor

Jump to: navigation, search

Contents


Firewall Scenarios

Example: Forward Reject

You will need 2 devices setted up with latest Ikarus O.S version. Beside each node a PC should exist. Let's suppose that have the following IPs.

  • Host PC1: ip1
  • AP Mode:ip2
  • Host PC2:ip3
  • AP Client Mode:ip4


  1. Open the INMS
  2. Right click to the AP node and choose "Advanced node configuration"
  3. Choose "Firewall" tab from the horizontal third row of tabs
  4. From the top pane next to labels "Chain" and "Policy" select "FORWARD" and "ACCEPT" respectively.
  5. Press the button with the "+" sign.
  6. In the pop-up window Insert in textboxes "Source IP", "Destination IP"
Source IP: ip1
Destination IP: ip3
From dropdown list next to "ACTION" select "REJECT".
  1. Go to "Advanced" Tab and from the dropdown list next to "Protocol" label select "UDP" protocol.
  2. Select all the checkboxes in "Connection State" panel
  3. Click the button with "check" sign.

Example: Input Drop

You will need 2 devices setted up with latest Ikarus O.S version. You will also need to install the latest INMS Manager version.

  1. Open the INMS
  2. Right click to the AP node and choose "Advanced node configuration"
  3. Choose "Firewall" tab from the horizontal third row of tabs
  4. From the top pane next to labels "Chain" and "Policy" select "INPUT" and "ACCEPT" respectively.
  5. Press the button with the "+" sign.
  6. In the pop-up window Insert in textboxes "Source IP", "Destination IP" the IPs of AP client and AP respectively and from dropdown list next to "ACTION" select "DROP".
  7. From the "advanced" tab next to protocol dropdown list select "protocol" ICMP
  8. Click the button with "check" sign.

Example: Output Reject

You will need 2 devices setted up with latest Ikarus O.S version. You will also need to install the latest INMS Manager version.

  1. Open the INMS
  2. Right click to the AP node and choose "Advanced node configuration"
  3. Choose "Firewall" tab from the horizontal third row of tabs
  4. From the top pane next to labels "Chain" and "Policy" select "OUTPUT" and "ACCEPT" respectively.
  5. Press the button with the "+" sign.
  6. In the pop-up window Insert in textboxes "Source IP", "Destination IP" the IPs of AP and of the subnet the network is setted up (e.g. 192.168.1.0/24) respectively and from dropdown list next to "ACTION" select "REJECT".
  7. Go to "Advanced" Tab and from the dropdown list next to "Protocol" label select "TCP" protocol
  8. Click the button with "check" sign.
Retrieved from "http://wiki.antcor.com/wiki/index.php/Firewall_Scenario"