R3166-R3206-HP High-End Firewalls NAT and ALG Configuration Guide-6PW101
28
Configuring ALG in the web interface
Enabling ALG
NOTE:
By default, the ALG function is enabled for all protocols.
In the navigation tree, select Firewall > ALG to enter the page as shown in Figure 20.
Figure 20 ALG configuration page
• To add selected application protocols, select them in the Optional Application Protocols list and
click the << button. Then the protocols will be added to the Selected Application Protocols list.
• To remove selected application protocols, select them in the Selected Application Protocols list and
click the >> button. Then the protocols will be removed to the Optional Application Protocols list.
ALG configuration examples
NOTE:
The following examples describe only ALG-related configurations, assuming that other required
configurations on the server and client have been done.
FTP ALG configuration example
Network requirements
As shown in Figure 21, a company accesses the Internet through a firewall with NAT and ALG enabled.
The company provides FTP services to the outside. The inside network segment of the company is
192.168.1.0/24, and the IP address of the FTP server is 192.168.1.2. Configure NAT and ALG to meet the
following requirements: