Symantec 360R Administration Guide - Page 77
Disabling NAT mode, Enabling IPsec pass-thru, Firewall, Enable IDENT Port
UPC - 037648240185
View all Symantec 360R manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 77 highlights
Network traffic control 77 Configuring advanced options To enable the IDENT Port See "Advanced tab field descriptions" on page 186. 1 In the SGMI, in the left pane, click Firewall. 2 In the right pane, on the Advanced tab, under Optional Security Settings, check Enable IDENT Port. 3 Click Save. Disabling NAT mode You can configure the security gateway to work as a standard network router to separate different subnets on an internal network. Disabling NAT Mode disables the firewall security functions. This setting should only be used for Intranet deployments where the security gateway is used as a bridge on a protected network. When the security gateway is configured for NAT mode, it behaves as a 802.1D (MAC bridge) device. To disable NAT Mode See "Advanced tab field descriptions" on page 186. 1 In the SGMI, in the left pane, click Firewall. 2 In the right pane, on the Advanced tab, under Optional Security Settings, check Disable NAT Mode. 3 Click Save. Enabling IPsec pass-thru IPsec pass-thru is supported by the security gateway. If the VPN client used in Exposed Host (DMZ) has problems connecting from behind the security gateway, use the None setting. The following list includes the supported IPsec types: ■ 1 SPI ADI - Assured Digital ■ 2 SPI Standard (Symantec, Cisco Pix, and Nortel Contivity) clients ■ 2 SPI-C Cisco Concentrator 30X0 Series clients