Modifying a USB/Ethernet interface
A USB/Ethernet interface is automatically created whenever a HUAWEI 4G USB modem that supports the HiLink feature is connected to the firewall and then configured.
The parameters of this type of interface can be modified by selecting it in the left section of the window. A tab will appear:
A second USB/Ethernet interfaces cannot be added.
“Configuration of the interface” tab
This field allows selecting the modem's automatic detection mode or one of the customized profiles created earlier.
|Dynamic IP (obtained by DHCP)||
The assigned IP address can be matched to a domain name via a DNS service provider (dyndns.org for example) in order to contact this firewall without having to know its IP address. This option is used when your firewall does not have a static IP address (e.g., your service provider, or DHCP renews its IP address regularly).
This feature can be enabled by selecting a dynamic DNS account that you would have configured earlier. The configuration of dynamic DNS clients is explained further in the document Dynamic DNS module.
This field allows specifying to the firewall that the configuration of the bridge (IP address and mask) is defined by DHCP. In this case, the “DHCP” zone in the Advanced properties tab will be enabled.
|Fixed IP (static)||
By selecting this option, the interface will have a static address range. In this case, its IP address and the mask of the sub-network to which the interface belongs, have to be indicated.
Here, several associated IP addresses and network masks may be defined for the same interface (the need to create aliases, for example). These aliases may allow you to use this Stormshield Network firewall as a central routing point. As such, a USB/Ethernet interface can be connected to various sub-networks with a different address range. To add or remove them, simply use the Add and Delete buttons located above the fields in the table.
Several IP addresses (aliases) can be added in the same address range on an interface. In this case, these addresses must all have the same mask. Reloading the network configuration will apply this mask on the first address and a mask /32 on the following addresses.