Lancom Systems LCOS 3.50 User Manual

LANCOM Reference Manual LCOS 3.50

̈

Chapter 8: Firewall

128

Fi

rew

a

ll

action sets. If the same trigger is used for several action sets, the
sequence of action sets can be adjusted.

In section ’How the LANCOM Firewall inspects data packets’

→

page 115 we

have already described that in the end the lists for checking data packets are
created from Firewall rules. Thus the extension of the block diagram looks like
as follows:

Connection

The connection of a Firewall rule defines to which data packets the rule should
refer to. A connection is defined by its source, its destination and the used
services. The following details can be used to specify the source or destina-
tion:

̈

All stations

Firewall / IDS / DoS / QoS

IP router

LAN bridg

e wi

th

“i

so

la

te

d mode”

Vir

tua

l L

A

Ns

(VLAN

)

N:N ma

ppi

ng

ISDN

ADSL

DSL

LAN / Switch

WLAN-1

DMZ

DSLoL

Configuration &
management:
WEBconfig, Telnet,

VPN / PPTP

DH

CP

cli

en

t / PPP

IP module: NetBIOS, DNS,

DHCP server, RADIUS, RIP,

NTP, SNMP, SYSLOG, SMTP

IPX router

LAN interfaces

WAN interfaces

IP masque

ra

di

ng

VPN services

LANCAPI

connection via
LAN/Switch

WLAN-2

Filter

Filter

Filter

IPX over PPTP/

VPN

Structure of the Firewall rules

Host?
Port?
Connection?
Filter?

Firewall rule

Packet action

Limit/trigger

Condition

Connection

Other

QoS

En

cr

yp

ti

on

:

802.11i

/WP

A

/WE

P