(This is the regular mode
that everyone is familiar with.) Network Address Translation and dynamic routing protocol capabilities using
Routing Information Protocol (RIP) and Open Short Path First (OSPF) can be performed in this mode. Note that
routing protocols RIP and OSPF are supported in single context mode only. Multimode context does not support
routing. In addition, routed mode supports use of multiple interfaces. Each interface must be on a different
subnet, and interfaces can be shared between contexts. By default, routed mode is set as the default mode.
Transparent Firewall Mode (Stealth Firewall)
Firewall Software Version 7.0 and later introduces the capability to deploy the Security Appliance in a secure
bridging mode, as a Layer 2 device, to provide rich Layer 2 through 7 firewall services. In a transparent mode,
the Security Appliance acts like a "bump in the wire" and is not a router hop. There is no need to redesign the IP
network (Layer 3 addressing scheme). The Security Appliance connects the same network (IP subnet) on its
inside and outside interfaces. The inside and outside interfaces are put on different Layer 2 segments if they are
connected on the same switch (use unique VLAN numbers or use separate switches).
Pages:
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257