A firewall is a mechanism that selectively filters data traffic between the WAN side (the Internet) and the LAN side of the network. It can protect the local network from potential hacker attacks, access to offensive websites, and/or other inappropriate uses.
The firewall functionality of Pepwave routers supports the selective filtering of data traffic in both directions:
- Outbound (LAN to WAN)
- Inbound (WAN to LAN)
- Between Internal Networks (VLAN to VLAN)
The firewall also supports Intrusion detection and DDoS attack prevention.
Select the tick box to manage Firewall Rules on devices in the group.
Before configuring firewall rules, take note of the following:
A rule set refers to the entire set of rules as defined in the device’s firewall page (Network > Firewall > Access Rules).
When an inbound firewall rule in a rule set specifies a particular WAN only, only devices that have a WAN name identical to the WAN name specified in the rule will receive the rule.
Devices without the specified WAN name will not receive the rule.For example, to apply an inbound firewall rule that allows traffic to “WAN 1”, the rule will be applied to devices that have a WAN named “WAN 1”. The rule won’t be applied to devices without a WAN named “WAN 1”.
Importing Firewall rules
Firewall Rules can be created on the local device and imported using the Peplink configuration file.
To start Click the “Import Rule Set from Configuration File” button.
A window will pop up showing all the Firewall Rules available in that configuration file.
This will create a new Firewall Rule Set when saved.
Before saving select the options to enable or disable individual firewall rules.
Select if the rule set should be applied to All Balance and Max devices or a selection of your devices using ‘tags’.
After being saved the rule set will be available from the main Firewall section in InControl.
Creating new fire wall rule sets
Start creating a new rule set by selecting the “Create rule set” button.
A firewall rule set consist of one or more Outbound, Inbound and Internal Network Firewall Rules.
The following options are available in the firewall rule settings:
- Outbound Firewall Rules
- Inbound Firewall Rules
- Internal Network Firewall Rules
- Intrusion Detection and DoS prevention
Firewall Rules configured on the local device are overwritten or preserved (default) depending on the configuration.
Using the SaaS (Software as a Service) option as a source or destination in the Firewall Rule allows for controlling
traffic matching the application.
Using the region option as a destination allows for controlling traffic to servers in a specific country.
