Configuring a firewall – Rockwell Automation 1783-SR Stratix 5900 Services Router User Manual User Manual

Rockwell Automation Publication 1783-UM005A-EN-P - September 2013

57

Configure the Stratix 5900 Services Router

Chapter 3

Configuring a Firewall

Stratix Configurator software lets you configure a firewall that uses default
settings if you have configured a WAN interface on the router.

For detailed information see the

Cisco Configuration Professional User Guide

.

These are the ways the a firewall protects your network.

• Applies default access rules to inside and outside interfaces.
• Applies default inspection rules to outside interface and the software

creates and applies a list of default inspection rules.

• Enables IP Unicast Reverse-Path Forwarding (RPF) on the outside

interface.

The IP Unicast RPF feature causes the router to check the source address of any
packet against the interface that the packet entered into the router. If the input
interface is not a feasible path to the source address according to the routing table,
the packet is dropped. This source address verification is used to defeat IP
spoofing.

The Firewall Configuration window does not appear if you did not configure a
WAN interface.

TIP

The Cisco IOS image on the router must support the Firewall feature set in
order for you to be able to configure a firewall with Stratix Configurator
software.

TIP

This feature is available if the Cisco IOS release you are running on your router
supports the Firewall feature set.