Manualshelf

User`s manual

ManualsBrandsD-Link ManualsComputer equipmentD DFL-500 DFL-500
21222324252627282930
For example, if a policy denies connections to a subnet, you can add a policy that accepts connections
from one of the computers on the subnet. Policies that accept connections in this way must be added to
the policy list above the connections that they are exceptions to.
Delete the default policy and then add policies to accept only the connections that you want the firewall to
accept
In this way you can limit Internet access to that allowed in the policies that you create. You must delete
the default policy because if it remains in the policy list, all connections that do not match another policy
will be accepted by the default policy.
Adding a policy to accept connections
Add addresses, services, or schedules as required.
Go to Firewall > Policy > Int to Ext . In Transparent mode go to Firewall > Policy > Outgoing .
Click New to add a policy.
You can also click Insert Policy before
on a policy in the list to add the new policy above a specific
policy.
Configure the policy to match the type of connection to accept.
Set Action to ACCEPT.
For descriptions of the policy fields, see Adding policies
.
Click OK to save the policy.
Requiring authentication to connect to the Internet
When running the DFL-500 in NAT mode, you can configure policies to require users on the internal network
to enter a user name and password to access the Internet. To require authentication you must add users to
the firewall configuration, see Adding user names and passwords.
You can add policies to require user authentication for connections:
From addresses on your internal network (see Adding addresses
)
To addresses on the Internet (see Adding addresses
)
Using certain services (see Services
)
During a one-time or recurring schedule (see Schedules
)
Since policy matching works on a first-match principle, you must add authentication policies above the default
policy. You must also add authentication policies above matching policies that accept or deny connections.
For more information, see Policy matching
and Arranging policies in the policy list.
Adding a policy to require authentication
Use the following procedure to require users to authenticate before being able to access the internet:
Add user names and passwords to the firewall. See Users and authentication
.
Go to Firewall > Policy > Int to Ext .
Click New to add a policy.
Configure the policy to match the type of connection for which to require authentication.
Set Action to AUTH.
For descriptions of the policy fields, see Adding policies
.
Click OK to save the policy.
DFL-500 User’s Manual
30