ZoneAlarm Z100G Router Manual PDF (Setup & Configuration Guide)

Page 181 / 428 Scroll up to view Page 176 - 180

The ZoneAlarm Firewall Security Policy

Chapter 10: Setting Your Security Policy

167

Chapter 10

This chapter describes how to set up your ZoneAlarm router security policy.

You can enhance your security policy by subscribing to services such as Web Filtering and

Email Filtering. For information on subscribing to services, see

Using Subscription

Services

on page 267.

This chapter includes the following topics:

The ZoneAlarm Firewall Security Policy

.................................................

167

Default Security Policy

.............................................................................

168

Setting the Firewall Security Level

..........................................................

169

Using Firewall Rules

................................................................................

172

Configuring Servers

..................................................................................

185

Using Web Rules

......................................................................................

187

The ZoneAlarm Firewall Security Policy

What Is a Security Policy?

A

security policy

is a set of rules that defines your security requirements, including (but not

limited to) network security. By themselves, the network security-related rules comprise

the

network security policy

.

When configured with the necessary network security rules, the ZoneAlarm router serves

as the enforcement agent for your network security policy. Therefore, the ZoneAlarm

router's effectiveness as a security solution is directly related to the network security

policy's content.

Setting Your Security Policy

Page 182 / 428

Default Security Policy

168

Check Point ZoneAlarm User Guide

Security Policy Implementation

The key to implementing a network security policy is to understand that a firewall is

simply a technical tool that reflects and enforces a network security policy for accessing

network resources.

A

rule base

is an ordered set of individual network security rules, against which each

attempted connection is checked. Each rule specifies the source, destination, service, and

action to be taken for each connection. A rule also specifies how a communication is

tracked, logged, and displayed. In other words, the rule base is the implementation of the

security policy.

Security Policy Enforcement

The ZoneAlarm router uses the unique, patented INSPECT engine to enforce the

configured security policy and to control traffic between networks. The INSPECT engine

examines all communication layers and extracts only the relevant data, enabling highly

efficient operation, support for a large number of protocols and applications, and easy

extensibility to new applications and services.

Default Security Policy

The ZoneAlarm default security policy includes the following rules:

•

Access is blocked from the WAN (Internet) to the internal networks (LAN and

WLAN).

•

Access is allowed from the internal networks to the WAN, according to the

firewall security level (Low/Medium/High).

•

Access is allowed from the LAN network to the WLAN.

•

If you chose “Firewall Mode” during setup, either in the

ZoneAlarm Setup Wizard

or in the

Wireless Configuration Wizard

:

•

Access is blocked from the WLAN to the LAN.

•

HTTP access to the ZoneAlarm Portal (my.firewall and my.vpn) is allowed

from the LAN, but not from the WLAN. You can allow HTTP access from

the WLAN, by creating a specific user-defined firewall rule.

•

When using the print server function (see

Using Network Printers

on page 367),

access from internal networks to connected network printers is allowed.

Page 183 / 428

Setting the Firewall Security Level

Chapter 10: Setting Your Security Policy

169

•

Access from the WAN to network printers is blocked.

These rules are independent of the firewall security level.

You can easily override the default security policy, by creating user-defined firewall rules.

For further information, see

Using Rules

on page 172.

Setting the Firewall Security Level

The firewall security level can be controlled using a simple lever available on the

Firewall

page. You can set the lever to the following states.

Table 31: Firewall Security Levels

This

level…

Does this…

Further Details

Low

Enforces basic control on

incoming connections,

while permitting all

outgoing connections.

All inbound traffic is blocked to the external

ZoneAlarm router IP address, except for ICMP

echoes ("pings").

All outbound connections are allowed.

Medium

Enforces strict control on

all incoming connections,

while permitting safe

outgoing connections.

This is the default level

and is recommended for

most cases. Leave it

unchanged unless you

have a specific need for a

higher or lower security

level.

All inbound traffic is blocked.

All outbound traffic is allowed to the Internet

except for Windows file sharing (NBT ports 137,

138, 139 and 445).

Page 184 / 428

Setting the Firewall Security Level

170

Check Point ZoneAlarm User Guide

This

level…

Does this…

Further Details

High

Enforces strict control on all

incoming and outgoing

connections.

All inbound traffic is blocked.

Restricts all outbound traffic except for the

following: Web traffic (HTTP, HTTPS), email (IMAP,

POP3, SMTP), ftp, newsgroups, Telnet, DNS,

IPSEC IKE and VPN traffic.

Block All

Blocks all access between

networks.

All inbound traffic from the Internet and all

outbound traffic to the Internet is blocked.

This does not affect traffic to and from the

gateway itself.

The definitions of firewall security levels provided in this table represent the ZoneAlarm

router’s default security policy.

You can easily override the default security policy, by creating user-defined firewall rules.

For further information, see

Using Rules

on page 172.

Note:

If the security policy is remotely managed, this lever might be disabled.

Note:

Security updates downloaded from a Service Center may alter the security

policy and change these definitions.

Page 185 / 428

Setting the Firewall Security Level

Chapter 10: Setting Your Security Policy

171

To change the firewall security level

1.

Click

Security

in the main menu, and click the

Firewall

tab.

The

Firewall

page appears.

2.

Drag the security lever to the desired level.

The ZoneAlarm router security level changes accordingly.

Rate

Popular ZoneAlarm Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share