Port mapping / Virtual Servers

The Port mapping / Virtual Servers configuration section is where you can configure virtual

servers like Web servers on the DMZ or similar. It’s also possible to regulate how bandwidth

management, traffic shaping, is applied to traffic flowing through the WAN interface of the

firewall. It is also possible to use Intrusion Detection / Prevention and Traffic shaping on Port

mapped services, these are done in the same way as on policies, so see that chapter for

more information.

Mappings are read from top to bottom, and the first matching mapping is carried out.

Add a new mapping

Follow these steps to add a new mapping on the WAN interface.

Step 1.

Choose the

WAN

policy list from the available policy lists.

Step 2.

Click on the

Add new

link.

Step 3.

Fill in the following values:

Name:

Specifies a symbolic name for the rule. This name is used mainly as a rule

reference in log data and for easy reference in the policy list.

Source Nets:

Specify the source networks, leave blank for everyone (0.0.0.0/0).

Source Users/Groups:

Specifies if an authenticated username is needed for this

mapping to match. Either make a list of usernames, separated by

,

or write

Any

for any

authenticated user. If it’s left blank there is no need for authentication for the policy.

Destination Nets:

Leave empty for the interfaces own IP or enter a new IP if using Virtual

IP.

Service:

Either choose a predefined service from the dropdown menu or make a custom.

Pass To:

The IP of the server that the traffic should be passed to.

Schedule:

Choose what schedule should be used for this mapping to match, choose

Always for no scheduling.

Step 4.

If using Traffic shaping fill in that information, if not skip this step.

Click the

Apply

button below to apply the change or click

Cancel

to discard changes

42

Delete mapping

Follow these steps to delete a mapping.

Step 1.

Choose the mapping list (WAN, LAN or DMZ) you would like do delete the

mapping from.

Step 2.

Click on the

Edit

link on the rule you want to delete.

Step 3.

Enable the

Delete mapping

checkbox.

Click the

Apply

button below to apply the change or click

Cancel

to discard changes.

Administrative users

Click on

Firewall

in the menu bar, and then click

Users

below it. This will show all the

users, and the first section is the administrative users.

The first column show the access levels,

Administrator

and

Read-only

. An

Administrator

user can add, edit and remove rules, change settings of the DFL-1100 and so on. The

Read-

only

user can only look at the configuration. The second column shows the users in each

access level.

Add Administrative User

Follow these steps to add a new

administrative user.

Step 1.

Click on

add

after the type

of user you would like to add,

Admin or Read-only.

Step 2.

Fill in

User name;

make

sure you are not trying to add one

that already exists.

Step 3.

Specify the password for the new user.

Click the

Apply

button below to apply the setting or click Cancel to discard changes.

Note:

The user name and password should be at least six characters long. The user

name and password can contain numbers (0-9) and upper and lower case letters (A-Z, a-

z). Special characters and spaces are not allowed.

44

Change Administrative User Access level

To change the access lever of a user click on the user name and you will see the following

screen. From here you can change the

access level by choosing the

appropriate level from the drop-down

menu.

Access levels

•

Administrator

– the user

can add, edit and remove

rules

and

change

all

settings.

•

Read-only

– the user can

only look at the

configuration of the firewall.

•

No Admin Access

– The user is only used for user authentication.

Follow these steps to change Administrative User Access level.

Step 1.

Click on the user you would like to change level of.

Step 2.

Choose the appropriate level from the drop-down menu.

Click the

Apply

button below to apply the setting or click Cancel to discard changes.

Change Administrative User Password

To change the password of a user click on the user name and you will see the following

screen.

Follow these steps to change

Administrative User password.

Step 1.

Click on the user you would

like to change level of.

Step 2.

Enable the

Change

password

checkbox.

Step 3.

Enter the new password

twice.

Click the

Apply

button below to apply the setting or click Cancel to discard changes.

Note

:

The password should be at least six characters long. The password can contain

numbers (0-9) and upper and lower case letters (A-Z, a-z). Special characters and spaces

are not allowed.

Delete Administrative User

To delete a user click on the user name and you will see the following screen.

Follow these steps to delete an

Administrative User.

Step 1.

Click on the user you would

like to change level of.

Step 2.

Enable the

Delete user

checkbox.

Click the

Apply

button below to

apply the setting or click Cancel to

discard changes.

Note:

Deleting a user is

irreversible; once the user is deleted, it cannot be

undeleted.