Integrating an SNS firewall as a peripheral router

The SNS firewall can be used to an advantage as a peripheral router offering advanced filtering features:

 

Setting up this architecture requires a virtual SNS firewall deployed on the platform with two interfaces taken out of the bridge created by default:

  • A protected interface with an address in the Transit-Network network (in interface renamed transit and bearing the address 192.168.100.1 in this document),
  • An unprotected interface with an address in the network named Production Network (out interface bearing the address 10.60.100.100 in this document),

 

The following firewall configuration operations will be explained in this technical note: