Add reset interfaces to Layer 2 Firewalls

Reset interfaces can deliver TCP resets and ICMP destination unreachable messages to interrupt communications picked up from capture interfaces when the communications trigger a response.

VLANs are supported for sending resets, but the correct VLAN is selected automatically. An interface you want to use as the reset interface must not have any manually added VLAN configuration.

The reset interface must be in the same broadcast domain as the capture interface that uses the reset interface. The resets are sent using the IP addresses and MAC addresses of the communicating hosts.
Important: An interface that is used only as a reset interface must not have an IP address.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Right-click the Layer 2 Firewall element and select Edit <element type>.
    The Engine Editor opens.
  2. In the navigation pane on the left, browse to Interfaces.
  3. Right-click the empty space and select New Physical Interface.
  4. From the Interface ID drop-down list, select an ID number.
  5. From the Type drop-down list, select Normal Interface.
  6. Click OK.
  7. Click Save.
    Do not close the Engine Editor.

Result

This interface can now be used as a reset interface. When you set up the physical network, make sure that the reset interface connects to the same network as the capture interfaces.

Next steps

Add capture interfaces and inline interfaces.