IMPORTANT
SNS 3.x versions have reached End of Maintenance since July 1st, 2024.
We recommend that you update your SNS firewalls to a version with maintenance to guarantee the protection of your infrastructure.
Integrating an SNS firewall as a peripheral router
The SNS firewall can be used to an advantage as a peripheral router offering advanced filtering features:
Setting up this architecture requires a virtual SNS firewall deployed on the platform with two interfaces taken out of the bridge created by default:
- A protected interface with an address in the Transit-Network network (in interface renamed transit and bearing the address 192.168.100.1 in this document),
- An unprotected interface with an address in the network named Production Network (out interface bearing the address 10.60.100.100 in this document),
The following firewall configuration operations will be explained in this technical note: