Page 156 / 428
Scroll up to view Page 151 - 155
Adding and Editing Bridges
142
Check Point ZoneAlarm User Guide
The
Bridge Configuration
page appears.
3.
Complete the fields using the following table.
4.
Click
Apply
.
A success message appears.
Page 157 / 428
Adding and Editing Bridges
Chapter 8: Using Bridges
143
Table 24: Bridge Configuration Fields
In this field…
Do this…
Network Name
Type a name for the bridge.
Firewall Between Members
Specify whether the firewall should be enabled between
networks on this bridge, by selecting one of the following:
•
Enabled.
The firewall is enabled, and it will inspect
traffic between networks on the bridge, enforcing
firewall rules and SmartDefense protections. This is
the default value.
•
Disabled.
The firewall is disabled between networks
on the bridge.
Non IP Traffic
Specify how the firewall should handle non-IP protocol traffic
between networks on this bridge, by selecting one of the
following:
•
Block.
The firewall will block all non-IP protocol
traffic on the bridge. This is the default value.
•
Pass.
The firewall will allow all non-IP protocol traffic
on the bridge and process it as described in
Using
Bridges
on page 139.
Spanning Tree Protocol
Specify whether to enable STP for this bridge, by selecting one
of the following:
•
Enabled.
STP is enabled.
•
Disabled.
STP is disabled. This is the default value.
If you selected
Enabled
, the
Bridge Priority
field appears.
Page 158 / 428
Adding and Editing Bridges
144
Check Point ZoneAlarm User Guide
In this field…
Do this…
Bridge Priority
Select this bridge's priority.
The bridge's priority is combined with a bridged network's MAC
address to create the bridge's ID. The bridge with the lowest ID
is elected as the root bridge. The other bridges in the tree
calculate the shortest distance to the root bridge, in order to
eliminate loops in the topology and provide fault tolerance.
To increase the chance of this bridge being elected as the root
bridge, select a lower priority.
Note:
If you select the same priority for all bridges, the root
bridge will be elected based on MAC address.
The default value is 32768.
This field only appears if STP is enabled.
IP Address
Type the IP address to use for this gateway on this bridge.
Note:
The bridge must not overlap other networks.
Subnet Mask
Select this bridge's subnet mask.
Page 159 / 428
Adding Internal Networks to Bridges
Chapter 8: Using Bridges
145
Adding Internal Networks to Bridges
To add an internal network to a bridge
1.
Click
Network
in the main menu, and click the
My Network
tab.
The
My Network
page appears.
2.
Click
Edit
in the desired network's row.
3.
In the
Mode
drop-down list, select
Bridged
.
New fields appear.
4.
Complete these fields as described below.
Page 160 / 428
Adding Internal Networks to Bridges
146
Check Point ZoneAlarm User Guide
If the assigned bridge uses STP, additional fields appear.
5.
Click
Apply
.
A warning message appears.
6.
Click
OK
.
A success message appears.
19216811.live