Operation Manual

IP Address: The IP address that will be allowed to access administrative services through the WAN.

Netmask (Optional): The netmask allows you to specify what IP address sets will be allowed access. If this field is left

empty a netmask of 255.255.255.255 is used, which means that only the single specified IP address has remote

administration access.

Zone Firewall

A zone is a group of network interfaces. By default, all interfaces within a zone are allowed to initialize network

communication with each other, but any network traffic initialized outside of a zone to the interfaces within the zone is

denied. Forwardings are used to allow traffic to traverse zones. Filter Policies are used to define how traffic passing

through a zone forwarding is filtered. Zones can be added, edited, or removed (except for the All and Router zone).

Zones

Create, edit, and remove zones (i.e., groups of network interfaces). Once you have defined zones, add rules to the Filter

Policies and Forwardings sections to define what traffic is allowed between zones.

The All zone is a special zone used to support legacy firewall configurations. This zone cannot be removed and is

reserved for forward-migration of IP Filter Rules from previous firmware versions. The All zone matches any traffic

handled by the router. User defined zones are preferred.

The Router zone is a special zone used to filter traffic initialized from the router (e.g., Enterprise Cloud Manager

connection) or destined to the router (e.g., SNMP) as part of a router services setup. (Set up This zone cannot be

removed and can only be altered by router services.

Click Add to create a new zone.