Scenario. You are the network administrator at Larkspur Outfitters, a regional outdoor-gear retailer. The marketing team is launching a public order-tracking web server that must be reachable from the internet. To keep a compromise of that server from reaching the internal LAN, you will isolate it in a screened subnet behind the Larkspur perimeter gateway, then enable DHCP so the other appliances in that subnet can lease addresses automatically. Work through the console on the left; the task list on the right checks itself as you go.
Live view of the gateway's security zones. The screened subnet lights up as you configure it.
Assign an available hardware port to a new logical interface, then configure its address.
| Interface | Port | Address | Status |
|---|
gw2.
Rules are evaluated per interface. Select the screened-subnet interface tab to add its rule.
| Action | Proto | Source | Destination | Description |
|---|
Hand out leases on the screened subnet so its appliances get addresses automatically.
Use the administrator credentials provided by Larkspur IT to reach the management console.
Credentials for this lab — user admin, password Edge@Sentinel1