1 00:00:00,600 --> 00:00:08,240 Indecision we're going through 1:48 inept robbed mode and basically doing topic wrap up. 2 00:00:08,600 --> 00:00:13,140 So we've seen that in this configuration that we have just finished the fourth grade. 3 00:00:13,150 --> 00:00:20,700 Is this thought as a gateway or router between a private network and the Internet and by using that 4 00:00:20,890 --> 00:00:25,300 the floodgate is able to hide the IP address of the private network. 5 00:00:25,580 --> 00:00:28,460 Let's take a look again at the diagram 6 00:00:31,200 --> 00:00:34,080 so this is a diagram we have we have worked on. 7 00:00:34,140 --> 00:00:36,400 So we have the fort again in the middle. 8 00:00:36,420 --> 00:00:44,420 It sits between internet connection internet order and the the land segment the internal network. 9 00:00:44,660 --> 00:00:53,090 So it receives packets of providing DHV services or maybe you have static connectivity static IP connectivity. 10 00:00:53,110 --> 00:01:01,060 That's a matter in receiving the packets then it translates the source IP address that will be wanting 11 00:01:01,090 --> 00:01:04,840 to 168 got 1.0 packet from the PC. 12 00:01:04,840 --> 00:01:14,130 This is the fourth address and it will translate this address to 170 to 27 but to that 155 and sending 13 00:01:14,260 --> 00:01:16,110 back it up. 14 00:01:16,540 --> 00:01:21,000 So this is basically running the firewall in that route. 15 00:01:21,430 --> 00:01:27,520 Let's take a look again at the web interface though some are some small changes configuration. 16 00:01:27,520 --> 00:01:34,530 Apply them and then we'll move to the next section. 17 00:01:34,610 --> 00:01:37,800 So we're back to the graphical user interface. 18 00:01:38,170 --> 00:01:40,910 Let's log in the username password. 19 00:01:41,040 --> 00:01:42,310 It's admin for both 20 00:01:52,490 --> 00:01:54,290 to play longer this time. 21 00:01:54,550 --> 00:01:59,490 But anyway we have phone have locked into the into the console the web console. 22 00:01:59,860 --> 00:02:00,550 Let's take a look. 23 00:02:00,550 --> 00:02:06,370 For example two network interfaces. 24 00:02:06,620 --> 00:02:13,540 One thing that we haven't done so far it's putting some labels that we've also had functionality. 25 00:02:13,560 --> 00:02:18,080 We'll talk about it later on in the Morning Passport we say. 26 00:02:18,290 --> 00:02:24,050 So the rule being that the web interface forceable we see that it's manual. 27 00:02:24,050 --> 00:02:29,180 So it's that the IP address is configured that it has to have a role. 28 00:02:29,330 --> 00:02:30,360 Now it's undefined. 29 00:02:30,380 --> 00:02:40,240 So we'll just put it as one web interface Conexion an estimated benice are use to estimate when utilization. 30 00:02:40,480 --> 00:02:42,700 Let's say we have 1 gig. 31 00:02:43,150 --> 00:02:48,230 So this is one leg and one gig for us. 32 00:02:48,330 --> 00:02:51,040 And the same for downstream 33 00:02:54,160 --> 00:03:01,260 it's when it's physical interface it's up the status of course it's enabled and we just hit OK. 34 00:03:05,340 --> 00:03:13,910 Moving to the second interface the LAN interface port to obviously will have to change the road from 35 00:03:13,970 --> 00:03:16,310 undefine to something that makes sense. 36 00:03:16,460 --> 00:03:22,780 And this is where we have configured LAN we can also put an alias. 37 00:03:22,830 --> 00:03:31,080 So kind of off label but that's that's not really necessary to do a recap we have configured the server 38 00:03:31,100 --> 00:03:37,640 we have the starting IP and the end I this will be the IP pool that's available for Gateway. 39 00:03:37,680 --> 00:03:38,920 Same interface. 40 00:03:38,930 --> 00:03:41,810 What does this have to do with our configuration. 41 00:03:41,900 --> 00:03:50,630 Well when they should be the back it comes right it will have to provide several things to talk to the 42 00:03:50,640 --> 00:03:59,710 requesting PC and this is the IP address the gateway and also the DNS service services. 43 00:03:59,840 --> 00:04:06,590 And this deal before it means that it will be provided that the forgetable be its IP address. 44 00:04:06,620 --> 00:04:11,910 And this is one that one the same for billions and hit OK. 45 00:04:18,300 --> 00:04:20,900 Something else no doubt is the DNS service. 46 00:04:20,920 --> 00:04:27,910 So the DNS services body full when firing up when starting up were you with any Forty-Eight firewall 47 00:04:28,170 --> 00:04:30,980 it has by default the 14th got. 48 00:04:31,290 --> 00:04:37,290 If this doesn't make any sense to you or you want to use different ones for whatever reason you can 49 00:04:37,290 --> 00:04:40,830 just click specify and configure a room with your own. 50 00:04:41,190 --> 00:04:45,250 I don't know working the NSA from your own environment. 51 00:04:45,360 --> 00:04:46,440 It doesn't matter. 52 00:04:48,030 --> 00:04:51,090 It doesn't make any sense for me to change them or leave them by default. 53 00:04:51,090 --> 00:04:53,360 I just want to make a note of them. 54 00:04:53,670 --> 00:04:57,060 Next I want to show you what is the setting routes. 55 00:04:57,210 --> 00:05:04,440 So we have connectivity because we have said we have a default route and the gateway or default gateway 56 00:05:04,620 --> 00:05:08,980 is the Internet Service Provider the ISP and the interfaces. 57 00:05:08,980 --> 00:05:09,840 Pt. 1. 58 00:05:10,100 --> 00:05:16,120 You can also obviously create new routes and you wrote more specific routes so not default one maybe 59 00:05:16,170 --> 00:05:19,880 towards another another interface different from the ISP one. 60 00:05:19,920 --> 00:05:20,910 The web interface 61 00:05:26,260 --> 00:05:33,740 last thing and we will close this session is the policy argue for policy reasons is where we have configured 62 00:05:33,740 --> 00:05:41,780 the policy and now we can see that our first policy or not the implicit one the nice traffic the net 63 00:05:41,840 --> 00:05:49,810 need to rely on if we go and it is this policy support too has changed now. 64 00:05:49,860 --> 00:05:56,900 And we also see that we have role there but it's a LAN interface and 12:56 it's it's where. 65 00:05:56,930 --> 00:05:58,370 So everything is fine. 66 00:05:59,680 --> 00:06:01,850 It's fine it's functional. 67 00:06:01,870 --> 00:06:06,460 Last thing to note is how do we say that things are are working. 68 00:06:06,460 --> 00:06:11,320 We have seen them working but how do we see cessions being established. 69 00:06:11,320 --> 00:06:15,110 We're going to for you go into all sessions 70 00:06:21,910 --> 00:06:33,880 we can now we have to we have to do some age's traffic to load some traffic so that it can be analyzed. 71 00:06:37,620 --> 00:06:43,220 The network is functioning and now we are looking at the traffic being hit here. 72 00:06:43,440 --> 00:06:48,120 And yes we have some we have traffic being logged. 73 00:06:48,210 --> 00:06:50,520 This is obviously Google. 74 00:06:50,560 --> 00:06:55,830 And as you said so far several times and other traffic that has been locked here. 75 00:06:55,830 --> 00:07:05,180 This is the policy the internal and policy we can see application bite and very important source sourcing 76 00:07:05,190 --> 00:07:09,150 interface face this nation this nation interface and so on. 77 00:07:09,360 --> 00:07:12,800 So hopefully this is this is useful information to. 78 00:07:12,990 --> 00:07:18,640 This information can become useful in any moment that you want to troubleshoot something you maybe are 79 00:07:18,660 --> 00:07:25,650 having packages that are that are not making through maybe or having packets that are dropped and this 80 00:07:25,650 --> 00:07:29,350 is the way to see how is the session a lot. 81 00:07:29,370 --> 00:07:32,820 Does it hit any policy which policy does it. 82 00:07:33,240 --> 00:07:40,710 And then it really makes sense to get used to to taking a look at the 40 view and all stations that.