Chapter 4 Configuration Basics
NXC5200 User’s Guide
64
4.4.7 Static Routes
Use static routes to tell the NXC about networks not directly connected to the
NXC.
4.4.8 Zones
A zone is a group of interfaces. The NXC uses zones, not interfaces, in many
security settings, such as firewall rules and remote management.
Zones cannot overlap. Each interface can be assigned to one zone. Virtual
interfaces are automatically assigned to the same zone as the interface on which
they run. When you create a zone, the NXC does not create any firewall rules,
assign an IDP profile, or configure remote management for the new zone.
4.4.9 NAT
Use Network Address Translation (NAT) to make computers on a private network
behind the NXC available outside the private network.
The NXC only checks regular (through-NXC) firewall rules for packets that are
redirected by NAT, it does not check the to-NXC firewall rules.
4.4.10 ALG
The NXC’s Application Layer Gateway (ALG) allows VoIP and FTP applications to go
through NAT on the NXC. You can also specify additional signaling port numbers.
MENU ITEM(S)
Configuration > Network > Routing > Static Route
PREREQUISITES
Interfaces
MENU ITEM(S)
Configuration > Network > Zone
PREREQUISITES
Interfaces
WHERE USED
Firewall, anti-virus, ADP, application patrol
MENU ITEM(S)
Configuration > Network > NAT
PREREQUISITES
Interfaces, addresses (HOST)
MENU ITEM(S)
Configuration > Network > ALG