The Network policies section contains four subsections:
-
Firewall
-
NAT & routing
-
Load balancing
-
Traffic shaping
Using network policies, your network administrators will be able to organize Internet access for users, publish internal resources on the Internet, and efficiently balance network bandwidth between services and applications.
Important! Rules created in these sections are applied from top to bottom in the same order as they are displayed in the console. The system always applies only the first rule for which all criteria are met. This means that the most specific rules must be in the upper part of the list, while the broader rules must be in the bottom.
To grant Internet access to users, perform the following:
Name |
Description |
---|---|
Step 1. Create a NAT rule |
Please refer to NAT rules. |
Step 2. Create a "allow" firewall rule |
Please refer to the Firewall section. |
To publish an internal resource on the Internet, perform the following:
Name |
Description |
---|---|
Step 1. Create a DNAT rule or reverse-proxy rule |
Please refer to DNAT rules and Publication of HTTP/HTTPS resources using the reverse proxy. |
To set up the Internet access via alternative ISP for certain service or address, perform the following:
Name |
Description |
---|---|
Step 1. Create a Route rule |
Please refer to Policy-based routing. |
To prohibit or allow certain type of traffic passing through UserGate, perform the following:
Name |
Description |
---|---|
Step 1. Create a firewall rule |
Please refer to the Firewall section. |
To distribute traffic to several internal servers, perform the following:
Name |
Description |
---|---|
Step 1. Create a load balancing rule |
For more details, please refer to Load balancing. |
To limit the bandwidth allocated to certain service or application, perform the following:
Name |
Description |
---|---|
Step 1. Create a shaping rule |
For more details, please refer to Traffic shaping. |