4 Replies Latest reply on Feb 18, 2015 9:50 AM by mike18

    Policy Name and Rule name

    mike18

      Hi Everyone,

       

      I found that Zone names in firewall are same as Interface names.

      So we can say that Zone==Interface in Mcafee firewall?

       

      For Access control rules we can define a rule group say Internet.

      Under this rule group we can create many rules with different names but they all will come under same group called Internet right?

       

      Regards

       

      Mike

        • 1. Re: Policy Name and Rule name
          PhilM

          Your assumption is kind of correct. Yes, by default zone = interface and interface = zone. But the interface-to-zone relationship is many-to-one - you can assign multiple interfaces to the same zone.

           

          Rules and many other configuration elements are configured explicitly on a per-zone basis. You'll find little, if anything, outside of the network configuration, that deals explicitly with interfaces.

           

          -Phil.

          • 2. Re: Policy Name and Rule name
            mike18

            Hi Phil,

             

            Can you please explain this in more detail

             

            You'll find little, if anything, outside of the network configuration, that deals explicitly with interfaces.

             

            Also Interface name and Zone have to be same or we can have different names for them?

             

            Regards

             

            Mike

            • 3. Re: Policy Name and Rule name
              PhilM

              Can you please explain this in more detail

               

              You'll find little, if anything, outside of the network configuration, that deals explicitly with interfaces.

               

              The interface configuration page deals with configuring a physical interface (hardware properties, IP address, VLAN, etc...) and choosing which zone to assign it to, but pretty much everything else (with the possible exception of routing) is configured based on the assigned zone.


              Also Interface name and Zone have to be same or we can have different names for them?


              The interface names are largely for your own reference. You can edit the assigned names, so "internal_network" could be renamed to "Mike's Interface". However when you look at Access Rule configuration, you won't see any reference to "Mike's Interface", just the zone names. Similarly, if you decide to configure one of the unused interfaces for a particular job, you can call it whatever you like.

              • 4. Re: Policy Name and Rule name
                mike18


                Many thanks Phil

                 

                Regards

                 

                Mike