Changes

== Configuration ==

== Configuration ==

# Firewall General Settings  The '''General Settings''' section is utilized for configuring the core policies of the device's firewall. The visual representation depicted below presents an illustrative model of the General Settings section. The ensuing table provides comprehensive information about the fields that are intended to be configured within this section.  To access this configuration, proceed to: '''Network –> Firewall -> General Setting''' While maintaining the default settings for other options, click on the Edit symbol corresponding to the zones.  The '''Zones''' section is employed to oversee the default traffic forwarding policies among distinct zones within the device.  Both "'''mob1s1a1'''" and "'''mob2s1a1'''" will be situated within the same Firewall zone, signifying that identical rules are pertinent to both SIM cards. Consequently, any traffic rule established will simultaneously influence on both SIM cards. As a result, it becomes necessary to generate two distinct zones for each SIM individually.

=== 1. Firewall General Settings  ===

# Create a new Zone by clicking on '''Add''' button as shown below: • Choose a '''Name''' for this rule as per your preference. • Set the input to be in the "'''Reject'''" zone.  • Configure the forward action to be directed to the "'''Reject'''" zone.  • Designate the output to be in the "'''Accept'''" zone.  • Activate both '''Masquerading''' and '''MSS clamping''' options.  • In the "'''Covered'''" zone, select the SIM Interface individually. In the provided example, it will be "SIM2" identified as "mob2s1a1".

The '''General Settings''' section is utilized for configuring the core policies of the device's firewall. The visual representation depicted below presents an illustrative model of the General Settings section. The ensuing table provides comprehensive information about the fields that are intended to be configured within this section.  To access this configuration, proceed to: '''Network –> Firewall -> General Setting''' While maintaining the default settings for other options, click on the Edit symbol corresponding to the zones.  The '''Zones''' section is employed to oversee the default traffic forwarding policies among distinct zones within the device.  Both "'''mob1s1a1'''" and "'''mob2s1a1'''" will be situated within the same Firewall zone, signifying that identical rules are pertinent to both SIM cards. Consequently, any traffic rule established will simultaneously influence on both SIM cards. As a result, it becomes necessary to generate two distinct zones for each SIM individually.

# To establish the traffic rule according to the zones you've set up, follow these steps  '''Navigate to Network –> Firewall -> Traffic Rule''' to begin creating the rule.  Create and set up the rule to enable the host's access to the web server.  ·       In the '''<nowiki/>'Add type'''' field, select 'Add new forward rule'.  ·       Assign a '''Name''' of your choosing to this rule.  ·       Choose "'''LAN'''" as the source zone.  ·       Select "'''WAN'''" as the destination zone.  Click the 'Add' button to confirm and add the rule.

 

# Upon clicking '''<nowiki/>'Add'<nowiki/>''' in the previous step, a new window will appear, enabling you to define additional configurations.  ·       Specify the source zone for which the SIM Interface is intended. In the provided instance, this would be '''SIM2''' labelled as "'''mob2s1a1'''".  ·       Choose the '''MAC address''' associated with the host to which the rule is to be applied in the source MAC address section. If needed, you can input a custom MAC address.  ·       Input the '''IP address''' of the host in the source IP address field.  ·       Within the action field, opt for '''<nowiki/>'Accept'<nowiki/>'''. ·       Click on '''<nowiki/>'Save and Apply''''.

=== 2. Create a new Zone ===

By clicking on '''Add''' button as shown below: • Choose a '''Name''' for this rule as per your preference. • Set the input to be in the "'''Reject'''" zone.  • Configure the forward action to be directed to the "'''Reject'''" zone.  • Designate the output to be in the "'''Accept'''" zone.  • Activate both '''Masquerading''' and '''MSS clamping''' options.  • In the "'''Covered'''" zone, select the SIM Interface individually. In the provided example, it will be "SIM2" identified as "mob2s1a1".

 

To establish the traffic rule according to the zones you've set up, follow these steps  '''Navigate to Network –> Firewall -> Traffic Rule''' to begin creating the rule.  Create and set up the rule to enable the host's access to the web server.  ·       In the '''<nowiki/>'Add type'''' field, select 'Add new forward rule'.  ·       Assign a '''Name''' of your choosing to this rule.  ·       Choose "'''LAN'''" as the source zone.  ·       Select "'''WAN'''" as the destination zone.  Click the 'Add' button to confirm and add the rule

 

=== 4. Specify the source zone ===

Upon clicking '''<nowiki/>'Add'<nowiki/>''' in the previous step, a new window will appear, enabling you to define additional configurations.  ·       Specify the source zone for which the SIM Interface is intended. In the provided instance, this would be '''SIM2''' labelled as "'''mob2s1a1'''".  ·       Choose the '''MAC address''' associated with the host to which the rule is to be applied in the source MAC address section. If needed, you can input a custom MAC address.  ·       Input the '''IP address''' of the host in the source IP address field.  ·       Within the action field, opt for '''<nowiki/>'Accept'<nowiki/>'''.         Click on '''<nowiki/>'Save and Apply''''.

 

You can specify additional settings as you wish. For example, you can set times when this rule should apply. This way, the host will be able to access the web server only at certain times.

You can specify additional settings as you wish. For example, you can set times when this rule should apply. This way, the host will be able to access the web server only at certain times.