The Network policies section contains the following subsections:
-
Firewall.
-
NAT and routing.
-
Load balancing.
-
Traffic shaping.
Using network policies, the administrator can configure the required Internet access for the users, publish internal resources to the Internet, and manage the bandwidth for specific services and applications.
Note
The rules created in these sections are applied top to bottom as they are listed in the console. Only the first rule matching the conditions is triggered. This means that more specific rules must be placed higher in the list than more general ones.
To enable Internet access for the users, follow these steps:
|
Task |
Description |
|---|---|
|
Step 1. (Optional) Create a NAT rule. |
This is applicable if traffic NATing is required. See the section NAT and Routing. |
|
Step 2. Create a firewall rule allowing access. |
See the section Firewall. |
To publish an internal resource to the Internet:
|
Task |
Description |
|---|---|
|
Step 1. Create a DNAT or reverse proxy rule. |
See the sections DNAT Rules and HTTP/HTTPS Resource Publishing Using Reverse Proxy. |
To provide Internet access via an alternate provider for a specific service or address:
|
Task |
Description |
|---|---|
|
Step 1. Create a policy-based routing rule. |
See the section Policy-Based Routing. |
To block or allow a specific type of traffic that passes through UserGate:
|
Task |
Description |
|---|---|
|
Step 1. Create a firewall rule. |
See the section Firewall. |
To distribute traffic between multiple internal servers:
|
Task |
Description |
|---|---|
|
Step 1. Create a load balancing rule. |
See the section Load Balancing. |
To limit the bandwidth for a specific service or application:
|
Task |
Description |
|---|---|
|
Step 1. Create a traffic shaping rule. |
See the section Traffic Shaping. |