Kerio Tech Firewall6 User Manual
Page 72
Chapter 7
Traffic Policy
72
Rules Created by the Wizard
The traffic policy is better understood through the traffic rules created by the Wizard in the
previous example.
These rules are not affected by the selected type of Internet connection (the wizard, pages
2 and 3).
Figure 7.7
Traffic Policy generated by the wizard
FTP Service and HTTP Service
These rules map all HTTP and HTTPS services running at the host with the 192.168.1.10
IP address (step 6). These services will be available at IP addresses of the “outer” interface
of the firewall (i.e. the interface connected to the Internet — page 3).
Note: Since WinRoute 6.4.0, mapped services can be accessed also from local networks
— it is therefore not necessary to use another (private) IP address for connections from
local clients. Therefore, the Source value is set to Any. For details, see chapter
.
Kerio VPN Service and HTTPS Service
The Kerio VPN service rule enables connection to the WinRoute’s VPN server (establish-
ment of control connection between a VPN client and the server or creation of a VPN
tunnel — for details, see chapter
).
The HTTPS Service rule allows connection via the Clientless SSL-VPN interface (access to
shared network items via a web browser — for details, see chapter
).