Black Box LR1102A-T1/E1 User Manual

Black Box LR11xx Series Router Configurations Guide

26

Step 10.1: Configure firewall policies to allow IKE negotiation through untrusted interface (applicable only if firewall license is also

enabled)

Black Box1/configure> firewall internet

Black Box1/configure/firewall internet> policy 1000 in service ike self

Black Box1/configure/firewall internet/policy 1000 in> exit

Black Box1/configure/firewall internet> exit

Step 10.2: Configure firewall policies to allow desired services through untrusted interface to manage the router (applicable only if

firewall license is also enabled)

Black Box1/configure> firewall internet

Black Box1/configure/firewall internet> policy 1001 in service snmp self

Black Box1/configure/firewall internet/policy 1001 in> exit

Black Box1/configure/firewall internet> policy 1002 in service telnet self

Black Box1/configure/firewall internet/policy 1002 in> exit

Black Box1/configure/firewall internet> policy 1003 in protocol icmp self

Black Box1/configure/firewall internet/policy 1003 in> exit

Black Box1/configure/firewall internet> exit

Step 10.3: Display firewall policies in the internet map (applicable only if firewall license is enabled)

Black Box1> show firewall policy internet
Advanced: S - Self Traffic, F - Ftp-Filter, H - Http-Filter,
R - Rpc-Filter, N - Nat-Ip/Nat-Pool, L - Logging,
E - Policy Enabled, M - Smtp-Filter

Pri Dir Source Addr Destination Addr Sport Dport Proto Action Advanced
--- --- ----------- ---------------- ----------------- ------ --------
1000 in any any ike PERMIT SE
1001 in any any snmp PERMIT SE
1002 in any any telnet PERMIT SE
1003 in any any any any icmp PERMIT SE
1024 out any any any any any PERMIT SE

Step 10.4: Display firewall policies in the internet map in detail (applicable only if firewall license is enabled)