Creating network objects
You need to create the following objects:
| Object name | IPv4 address in this example | Role |
|---|---|---|
| Transit-Router | 192.168.100.2 | Distributed router (DLR) |
| Web-NAT | 10.60.100.101 | IP address of the web server as seen from external networks |
| Web-Srv | 192.168.0.10 | Real IP address of the web server |
| Web-Tier | 192.168.0.0/24 | Network dedicated to web servers |
| App-Tier | 192.168.1.0/24 | Network dedicated to application servers |
| DB-Tier | 192.168.2.0/24 | Network dedicated to database servers |
Transit-Router, Web-NAT and Web-Srv objects
- Log on to the firewall's web administration interface as an administrator.
- In the Configuration > Objects > Network objects menu, click on Add.
- In the column on the left, select Host and fill in the mandatory fields for the Transit-Router object by following the example in the table above:
- Object name,
- IPv4 address.
- Click on Create and duplicate.
- Repeat steps 3 and 4 for the Web-NAT object.
- Repeat step 3 for the Web-Srv object.
- Click on Create.
Objects Web-Tier, App-Tier and DB-Tier
- In the Configuration > Objects > Network objects menu, click on Add.
- In the column on the left, select Network and fill in the mandatory fields for the Web-Tier object by following the example in the table above:
- Object name,
- IPv4 address.
- Click on Create and duplicate.
- Repeat steps 3 and 4 for the App-Tier object.
- Repeat step 3 for the DB-Tier object.
- Click on Create.