Firewall configuration options
This page describes the settings available on each configuration page for a NetFoundry zLAN firewall.
Details page
The Details page shows a read-only summary of the firewall instance.
| Field | Description |
|---|---|
| Name | The display name of the firewall. |
| Description | An optional description. |
| Status | Current operational state: Online, Offline, or Not configured. |
| Interfaces | Network interfaces available for configuration. |
Configuration page
The Configuration page controls global and per-interface settings.
General settings
| Setting | Description |
|---|---|
| Discovery mode | Enable or disable network discovery on an interface. |
| Allow ICMP | Permit inbound and outbound ping (ICMP echo) traffic. |
| Allow SSH | Permit inbound SSH connections to the firewall. |
| Masquerade (NAT) | Enable source NAT so that traffic leaving the firewall uses the interface IP. |
| VRRP | Enable VRRP for high-availability failover. |
| OSPF | Enable the Open Shortest Path First dynamic routing protocol. |
| EIGRP | Enable the Enhanced Interior Gateway Routing Protocol. |
DHCP server settings
These settings apply per interface. The gateway defaults to the interface IP address.
| Setting | Description |
|---|---|
| Default lease time | Default duration (in seconds) for DHCP address leases. |
| Maximum lease time | Maximum duration (in seconds) a client may request for a lease. |
| DNS server 1 | Primary DNS server address assigned to DHCP clients. |
| DNS server 2 | Secondary DNS server address assigned to DHCP clients. |
| Range start | First IP address in the DHCP pool. |
| Range end | Last IP address in the DHCP pool. |
| Subnet mask | Subnet mask assigned to DHCP clients. |
Rules page
The Rules page lists all active firewall rules. Each rule can be configured with the following fields.
| Field | Description |
|---|---|
| Protocol | The network protocol the rule applies to (TCP, UDP, ICMP, or any). |
| Source | Source IP address or CIDR range. |
| Destination | Destination IP address or CIDR range. |
| Port | Destination port or port range. |
| Action | Allow or Deny. |
| Priority | Evaluation order — lower numbers are evaluated first. |
To manage rules, see Manage firewall rules.
Visualize page
The Visualize page provides a graphical view of the firewall's configuration and active traffic flows, including which interfaces and rules are in use.