Setting a Network Service Alias

About this task

A network service alias is a set of configurations that consist of protocol and port mappings. Both source and destination ports are configurable. For each protocol, up to two source port ranges and up to two destination port ranges can be configured. A maximum of four protocol entries can be configured per network service alias.

Use a service alias to associate more than one IP address to a network interface, providing multiple connections to a network from a single IP node.

To define a service alias configuration for an IP firewall:

Procedure

  1. Select Configuration > Security > IP Firewall > Network Service Alias from the Web UI.
    The Network Service Alias screen displays.
    Click to expand in new window
    IP Firewall Network Service Alias Screen
  2. Select Add to create a new network service alias.
    Select an existing network service alias and click Edit to modify it. Select Delete to remove an existing network service alias from those available in the list.

    Use Copy to create a copy of the selected policy and modify it for further use. Use Rename to rename the selected policy.

  3. If you are adding a new Network Service Alias, give it a Name up to 32 characters to distinguish this alias configuration from others with similar attributes.
    The network group alias name always starts with a dollar sign ($).
    Click to expand in new window
    IP Firewall Network Service Alias - Add/Edit Screen

    Select Reset to revert to the last saved configuration. Select Exit to exit without creating a network service alias.

  4. Select + Add Row and provide the following configuration parameters:
    Protocol Specify the protocol for which the alias is created. Use the drop down to select the protocol from eigrp, gre, icmp, igmp, ip, vrrp, igp, ospf, tcp and udp. Select other if the protocol is not listed. When a protocol is selected, its protocol number is automatically selected.
    Source Port (Low and High) This field is relevant only if the protocol is tcp or udp.

    Specify the source ports for this protocol entry. A range of ports can be specified. Select the Enter Ranges button next to the field to enter a lower and higher port range value. Up to eight (8) ranges can be specified.

    Destination Port (Low and High) This field is relevant only if the protocol is tcp or udp.

    Specify the destination ports for this protocol entry. A range of ports can be specified. Select the Enter Ranges button next to the field to enter a lower and higher port range value. Up to eight (8) such ranges can be specified.

  5. In the Range field, use the + Add Row button to specify the Start IP address and End IP address for the service alias range, or double-click on an existing service alias range entry to edit it.
  6. Select OK when completed to update the network service alias settings.
    Select Reset to revert the screen to its last saved configuration.