User Tools

Site Tools


routes50

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
routes50 [2019/03/06 10:58]
root
routes50 [2020/03/16 21:14] (current)
zog
Line 1: Line 1:
-====Route=====+===== Route=====
  
-Routes in firewall ​are created just like the users routes, but they have additional optionssource, source port, interface and the “Use NAT” checkbox.+After choosing “Add”, you will see the route settings window. In this window there are the following fields:
  
-Routeswhich are added via firewall rules and routesadded via the ‘Routes” moduleare the same list of ICS CUBE routes.+  * direction, 
 +  * destination, 
 +  * protocol, 
 +  * port, 
 +  * duration, 
 +  * “through gateway”, “through interface”,​ “through provider” checkboxes,​ 
 +  * the “Do not process traffic with firewall” checkbox.
  
-After choosing "​Add",​ you will see the route settings window. In this window there are the following fields:+{{:user_route.png?​|}}
  
-  * Direction, +You can check which values are acceptable when you place the cursor over the fieldor you can choose a value from the drop-down list containing the objects that are already known to ICS CUBE. The “Route” rule is used for policy-based routing of traffic ​not only between internal networks, but also to different ISPs. When setting the rule “through gateway” the IP-address of the gateway device must be set. Most often this rule is used when ICS CUBE is deployed on a server with single network interface.
-  * Destination address, +
-  * Protocol,​ +
-  * Port, +
-  * Time, +
-  * To whom sent the traffic;+
  
-{{adding_route.jpg}}+When the checkbox “Do not process traffic with firewall” is ticked, to all packets matching this rule the firewall rules will not be applied. It should be noted, that if this checkbox isn't ticked and TCP is established through ICS CUBE, the firewall will drop the connection after 30 seconds downtime.
  
-You can check what values are acceptible when you place the cursor on the field, or you can choose a value from the drop-down list containing the objects that are already known to ICS CUBE. The "​Route" ​rule is using for routing traffic not only between the parts of the networksbut also to different ISPs. When setting ​the rule "through ​the gateway"​ the IP-address ​of the gateway device must be set. Most often this rule is used when ICS CUBE is based on a server with one network ​interface.+When the rule “Through interface” ​is set, the rule to route traffic ​through ​one of the ICS CUBE network ​interfaces will be created.
  
-When the checkbox "Do not process with firewall"​ is marked, to this rule to all the traffic that goes through ICS CUBE, the firewall rules will not be applied. It should be noted, that if this checkbox isn't marked and TCP traffic goes through ICS CUBE, firewall will drop the connection after 30 seconds downtime. +When the rule Through ​provider” ​is set, the rule to route traffic ​through one of the ICS CUBE ISPs will be created.
- +
-When the rule "Through ​interface" ​is set, the route rule through one of the ICS CUBE network interfaces will be created. +
- +
-When the rule "​Through ISP" is set, the route rule through one of the ICS CUBE ISPs will be created.+
  
  
routes50.1551859084.txt.gz · Last modified: 2019/03/06 10:58 by root