In order to ensure network security, the firewall is essential. Next I will take the mercury router as an example to introduce the firewall settings.
1. IP address filtering in the firewall is used to set the Intranet host's access permissions to the Internet through the IP address. during a certain period of time, prohibit/allow communication between all or some ports of an Intranet IP segment and all or some ports of the Internet IP address. 2. When you enable the IP address filtering function, you must enable the firewall General switch and specify the default filtering rules for IP address filtering.
3. Suppose we do not allow the IP address 192.168.1.100-192.168.1.102 of the Intranet to access all the IP addresses of the Internet, and allow all IP addresses of the Internet to access 192.168.1.103 completely unrestricted. (1) Select the default filtering rule. The Filtering Rule used here is used to prohibit data packets that do not comply with the configured IP address filtering rule.
(2) Add a new IP address filter entry: Because the default rule is to prohibit packets that do not comply with the IP address filter rules from passing through the router, so the IP address segment of the Intranet COMPUTER: 192.168.1.100-192.168.1.102 does not need to be added, it is disabled by default. (3) set to allow the Intranet 192.168.1.103 to access all Internet IP addresses www.2cto.com
Save the Postfix, as shown in, to complete the settings we want.
4. Assume that the IP address of 192.168.1.100-192.168.1.102 on the Intranet can only browse the Internet webpage at any time. From eight o'clock A.M. to six o'clock P.M., 192.168.1.103 only allows sending and receiving emails on the 219.134.132.62 email server on the Internet, and cannot communicate with the Internet for other time. You need to use port 80 to browse the Web page on the Internet, use port 25 and port 110 to send and receive emails, and the domain name server port number is 53.
(1) Select the default filtering rule. The Filtering Rule used here is that any data packet that does not comply with the configured IP address filtering rule is prohibited from passing through this router.
(2) set to generate the following entries to achieve the expected purpose.
The above is the method set by the firewall of the mercury generator, and I hope it will help you. This article is from