Do I need to do some changes to the Zone and interfaces?
Like on my given screenshot regarding the interface.
br0 = ETH0
ETH2 = ETH2
br1 = ETH3
wg0 = ETH4
is my understanding correct? Also when you go inside. there is an 'Options' what does it mean.
like for example the br0 its DHCP does it mean it will become a DHCP server? or it will just receive an IP address?
And the other is the policy.
Please explain to me what does it mean to have a source of prot and destination of fwall.
Reply
Br0 is not Eth0. Br0 is a bridge between eth0 and eth1.
Interface br1 does not exist on the Protector.
Wg0 is not eth4, it’s a virtual adapter created for the VPN.
The DHCP option in the firewall interfaces allows DHCP datagrams to enter and leave the interface.
The zones fwall and prot are physically on the same unit, but are different logic modules. The firewall is ideally located above the Protector. So, they are treated as different zones.
Interfaces eth0 and eth1 should be treated as non-existent and only br0 should be considered.
Interface br1 does not exist on the Protector.
Wg0 is not eth4, it’s a virtual adapter created for the VPN.
The DHCP option in the firewall interfaces allows DHCP datagrams to enter and leave the interface.
The zones fwall and prot are physically on the same unit, but are different logic modules. The firewall is ideally located above the Protector. So, they are treated as different zones.
Interfaces eth0 and eth1 should be treated as non-existent and only br0 should be considered.
The firewall is pre-configured to work at best, and it’s better not touch the configuration of zones, policies, interfaces.
Comments
0 comments
Please sign in to leave a comment.