## CentreCOM AR550S 設定例集 2.9 ## 54 Ethernet上でのファイアウォール・スタティックNAT ## ルーターのコンフィグ ENABLE IP ADD IP INT=eth0 IP=4.4.4.1 MASK=255.255.255.248 ADD IP INT=vlan1 IP=192.168.10.1 MASK=255.255.255.0 ADD IP ROUTE=0.0.0.0 INT=eth0 NEXT=4.4.4.6 ENABLE FIREWALL CREATE FIREWALL POLICY=net ENABLE FIREWALL POLICY=net ICMP_F=PING,UNREACH DISABLE FIREWALL POLICY=net IDENTPROXY ADD FIREWALL POLICY=net INT=vlan1 TYPE=PRIVATE ADD FIREWALL POLICY=net INT=eth0 TYPE=PUBLIC ADD FIREWALL POLICY=net NAT=ENHANCED INT=vlan1 GBLINT=eth0 ADD FIREWALL POLICY=net RULE=1 AC=NAT NATTYPE=STANDARD INT=eth0 PROTO=TCP GBLIP=4.4.4.2 GBLPORT=80 IP=192.168.10.2 PORT=80 ADD FIREWALL POLICY=net RULE=2 AC=NAT NATTYPE=STANDARD INT=eth0 PROTO=TCP GBLIP=4.4.4.3 GBLPORT=25 IP=192.168.10.3 PORT=25 ADD FIREWALL POLICY=net RULE=3 AC=NAT NATTYPE=STANDARD INT=eth0 PROTO=TCP GBLIP=4.4.4.4 GBLPORT=53 IP=192.168.10.4 PORT=53 ADD FIREWALL POLICY=net RULE=4 AC=NAT NATTYPE=STANDARD INT=eth0 PROTO=UDP GBLIP=4.4.4.4 GBLPORT=53 IP=192.168.10.4 PORT=53 ADD FIREWALL POLICY=net RULE=5 AC=NAT NATTYPE=STANDARD INT=vlan1 PROTO=TCP GBLIP=4.4.4.2 GBLPORT=80 IP=192.168.10.2 PORT=80 ADD FIREWALL POLICY=net RULE=6 AC=NAT NATTYPE=STANDARD INT=vlan1 PROTO=TCP GBLIP=4.4.4.3 GBLPORT=25 IP=192.168.10.3 PORT=25 ADD FIREWALL POLICY=net RULE=7 AC=NAT NATTYPE=STANDARD INT=vlan1 PROTO=TCP GBLIP=4.4.4.4 GBLPORT=53 IP=192.168.10.4 PORT=53 ADD FIREWALL POLICY=net RULE=8 AC=NAT NATTYPE=STANDARD INT=vlan1 PROTO=UDP GBLIP=4.4.4.4 GBLPORT=53 IP=192.168.10.4 PORT=53