Table 39: semi-private low security firewall rules, 1 of 2 – Avaya 3.7 User Manual
Page 308
Firewall rules template
308 Avaya VPNmanager Configuration Guide Release 3.7
Table 39: Semi-private low security firewall rules
Rule Name
Action
Source
Destination
Service
Direction
Zone
Keep
State
Description
InBoundSem
iPrivateDeny
Access
Deny
Any
Manageme
ntNet
Any
In
Semi
Private
No
Traffic to
Management
Net is
denied.
InBoundSem
iPrivateVPN
Access
Permit
Any
SemiPrivate
IP
PublicIP
IKE_IN
IPSEC_N
AT_T_IN
AH/ESP
ICMPDest
Unreach
In
Semi
Private
no
Permit
incoming
VPN traffic
and ICMP
unreachable
packet
InBoundSem
iPrivatePerm
itAll
Permit
Any
Any
Any
In
Semi
Private
Yes
Permit WI/
VMGR and
VPN, clear
traffic to
PUBLIC
OutBoundSe
miPrivateDe
nyAccess
Deny
DMZNet
Any
Any
Out
Semi
Private
No
Deny traffic
from
DMZNet
OutBoundSe
miPrivateVP
NAccess
Permit
SemiPri
vateIP
PublicIP
Any
IKE_OUT
IPSEC_N
AT_T_OU
T
AH/ESP
ICMPDest
Unreach
Out
Semi
Private
no
Permit
outgoing
VPN traffic
OutBoundSe
miPrivateDe
nyAll
Permit
Any
Any
Any
Out
Semi
Private
Yes
Permit
incoming
VPN
Table 40: Semi-private VPN-only security firewall rules
Rule Name
Action
Source
Destination
Service
Direc-
tion
Interface
Keep
State
InBoundPublicA
ccessVPNData
Permit
Any
Semi-Private
-IP
ESP
IPSEC_NAT_T_IN
In
Semi-Pri
vate
Yes
OutBoundSemi
PrivateAcessVP
NData
Permit
Semi-Privat
e-IP
Any
ESP
IPSEC_NAT_T_IN
Out
Semi-Pri
vate
Yes
InBoundSemiPri
vateAccessVPN
KeyMgmt
Permit
Any
Semi-Private
-IP
IKE-IN
IKE-AVAYA
In
Semi-Pri
vate
Yes
OutBoundSemi
PrivateAccessV
PNKeyMgmt
Permit
Semi-Privat
e-IP
Any
IKE-IN
IKE-AVAYA
Out
Semi-Pri
vate
Yes
1 of 2