Aller au contenu

Retour au projet Snipe-IT

Liste des règles de Pare-feu

Aliases

Name Type Description Content
VPN_ADMIN_PEI Network(s) Réseaux dédiés VPN 10.31.255.0/24
VPN_ADMIN_PEI_GW Host(s) Gateway du serveur VPN 10.31.255.254
RESEAUX_PEI Network(s) Réseau complet PEI 10.31.0.0/16
HTTP_HTTPS Port(s) HTTP / HTTPS 80,443
PORTS_AD Port(s) Ports autorisation AD 53,88,135,389,445,464,636,49668
PORTS_3CX Port(s) Ports redirection NAT 3CX 2197, 2528, 5060, 5061, 5090, 5223, 9000, 10999, 48000, 65535

VLAN 3120 - LAN

Action Protocol Source Port Destination Port Gateway Schedule Description
Pass IPv4 TCP/UDP LAN Net * 10.31.31.100 Alias : PORTS_AD * * Connexion LAN - Domaine
Pass IPv4 * LAN Net * 10.31.30.101 * * * Connexion LAN - SMB
Pass IPv4 TCP LAN Net * 10.31.30.100 Alias : HTTP_HTTPS * * Accès SnipeIT for Users
Pass IPv4 TCP LAN Net * 10.31.30.202 Alias : HTTP_HTTPS * * Accès Passbolt for Users
Pass IPv4 TCP/UDP LAN Net * This Firewall * * * Accès serveur DNS for Users
Pass IPv4 * LAN Net * ! Alias : RESEAU_PEI * * * Bloque Accès Infra

VLAN 3130 - RES

Action Protocol Source Port Destination Port Gateway Schedule Description
Pass IPv4 * 10.31.30.101 * 10.31.31.100 * * * Connexion SMB - Domaine
Pass IPv4 TCP/UDP 10.31.30.100 * Alias : PORTS_AD * * Connexion LDAP SnipeIT - AD
Pass IPv4 TCP/UDP * * This Firewall 53 (DNS) * * Accès serveur DNS
Pas IPv4 * RES Net * ! Alias : RESEAU_PEI * * * Accès Infra PEI

VLAN 3131 - AUTH

Action Protocol Source Port Destination Port Gateway Schedule Description
Pass IPv4 TCP/UDP AUTH Net * This Firewall 53 (DNS) * * Accès serveur DNS
Pass IPv4 * AUTH Net * ! Alias : RESEAU_PEI * * * Bloque Accès Infra

VLAN 3139 - DMZ

Action Protocol Source Port Destination Port Gateway Schedule Description
Pass IPv4 TCP 10.31.39.1 * 10.31.30.16 * * Reverse Proxy Portfolio MkDocs
Pass IPv4 TCP/UDP DMZ Net * This Firewall 53 (DNS) * * Accès serveur DNS
Pass IPv4 * DMZ Net * ! Alias : RESEAU_PEI * * * Bloque Accès Infra

VLAN 3140 - WIFI

Action Protocol Source Port Destination Port Gateway Schedule Description
Pass TCP/UDP WIFI net * 10.31.30.5 * * * Accès Contrôleur UNIFI
Pass TCP/UDP WIFI net * This Firewall * * * Accès serveur DNS
Pass * WIFI net * ! Alias : RESEAU_PEI * * * Accès Internet

VLAN 3141 - VOIP

Action Protocol Source Port Destination Port Gateway Schedule Description
Pass * VOIP net * 10.31.30.4 * * * Accès serveur 3cx par téléphones
Pass TCP/UDP VOIP net * This Firewall 53 (DNS) * * Accès serveur DNS
Pass TCP VOIP net * This Firewall 123 (NTP) * * Accès serveur NTP

Règles NAT - Port Forward

Source Destination NAT
Interface Protocole Adresse Ports Adresse Ports IP Ports Description
WAN TCP/UDP * * WAN Address Alias : PORTS_3CX 10.31.30.4 Alias : PORTS_3CX NAT Redirection ports 3CX
WAN TCP * * WAN Addresse Alias : HTTP_HTTPS 10.31.39.1 Alias : HTTP_HTTPS NAT Cloudpanel

Haut de la page