Kerio Tech Firewall6 User Manual

Page 45

Advertising
background image

45

change of a network adapter etc., there is no need to edit traffic rules — simple adding of the

new interface in the correct group will do.

In WinRoute, the following groups of interfaces are defined:

Internet interfaces — interfaces which can be used for Internet connection (network

cards, wireless adapters, dial-ups, etc.),

Trusted / Local interfaces

interfaces connected to local private networks protected

by the firewall (typically Ethernet or WiFi cards),

VPN interfaces — virtual network interfaces used by the Kerio VPN proprietary solution

(VPN server and created VPN tunnels — for details, refer to chapter

23

),

Other interfaces — interfaces which do not belong to any of the groups listed above

(i.e. a network card for

DMZ

, idle dial-up, etc.).

Groups of interfaces cannot be removed and it is not possible to create new ones (it would not

be of any help).

During the initial firewall configuration by Traffic rules wizard (see chapter

7.1

), interfaces

will be sorted in correct groups automatically. This classification can be later changed (with

certain limits — e.g. VPN server and VPN tunnels cannot be moved from the VPN interfaces

group).

To move an interface to another group, drag it by mouse to the desired destination group or

select the group in properties of the particular interface — see below.

Note: If the initial configuration is not performed by the wizard, all interfaces (except VPN

interfaces) are set as Other interfaces. Before you start creating traffic rules, it is recommended

to define correctly interfaces for Internet connection as well as interfaces for the local network

— this simplifies definitions of the rules significantly.

Viewing and editing interfaces

In the list of interfaces, WinRoute shows parameters related to firewall’s configuration and

operations:

Name

The unique name used for interface identification within WinRoute. It should be clear for

easy reference, e.g. Internet for the interface connected to the Internet connection.

The name can be edited later (see below) with no affect on WinRoute’s functionality.

The icon to the left of the name represents the interface type (network adapter, dial-up

connection, VPN server, VPN tunnel).

Note: Unless the name is edited manually, this item displays the name of the adapter as

assigned by the operating system (see the Adapter name entry).

Advertising
Popular Brands
Popular manuals