Multicast processing and basic Multicast policy You need to add firewall policies to allow packets to pass from one interface to another. Multicast packets require multicast security policies. Similar to firewall policies, in a multicast policy, the administrator specifies the […]

NAT46 policy NAT46 refers to the mechanism that allows IPv4 addressed hosts to communicate with IPv6 hosts. Without such a mechanism, IPv4 environments cannot connect to IPv6 networks. Sample topology In this example, an IPv4 client tries to connect to […]

NAT64 policy and DNS64 (DNS proxy) NAT64 policy translates IPv6 addresses to IPv4 addresses so that a client on an IPv6 network can communicate transparently with a server on an IPv4 network. NAT64 policy is usually implemented in combination with […]

Policy with Internet Service Using Internet Service in policy This recipe shows how to apply a predefined Internet Service entry into a policy. The Internet Service Database is a comprehensive public IP address database that combines IP address range, IP […]

Policy with destination NAT Static virtual IPs Usually we use VIP to implement Destination Address Translation. Mapping a specific IP address to another specific IP address is usually referred to as Destination NAT. When the Central NAT Table is not […]

Policy with source NAT Static SNAT NAT or Network Address Translation is the process that enables a single device such as a router or firewall to act as an agent between the Internet or Public Network and a local or […]

Policy views and policy lookup This topic provides a sample of firewall policy views and firewall policy lookup. Policy views In Policy & Objects policy list page, there are two policy views: Interface PairView and By Sequence view. Interface PairView […]

Other NGFW policy-based mode options You can combine both application control and web filtering in the same NGFW policy mode policy. If the policy accepts applications or URL categories, you can apply Antivirus, DNS Filtering, and IPS profiles in NGFW […]