Virtual Firewall elements store the configuration information related to the Virtual Firewalls.
Selecting a Virtual Resource for the Virtual NGFW Engine automatically adds the Virtual NGFW Engine to the Master NGFW Engine where the Virtual Resource is used.
For more details about the product and how to configure features, click Help or
press F1.
Steps
-
Select Configuration.
-
Right-click NGFW Engines and select .
-
In the
Name field, enter a unique name.
-
Next to the Virtual Resource field, click Select and select a Virtual Resource on the Master NGFW Engine to which you want to add the Virtual Firewall.
-
(Optional) In the DNS IP Addresses field, add one or more IP addresses.
DNS IP addresses are IP addresses of external DNS servers. Virtual Firewalls use these DNS servers to resolve Domain names to IP addresses.
Virtual Firewalls need DNS resolution to contact services that are defined using URLs or domain names, and to resolve fully
qualified domain names (FQDNs) used in policies. When DNS relay is configured, these DNS servers are used unless domain-specific
DNS servers are specified in a DNS Relay Profile element.
Note: If you have defined NetLink-specific DNS IP addresses, adding DNS
IP addresses overrides the NetLink-specific DNS IP addresses.
- To enter a single IP address manually, click Add and select IP Address.
Enter the IP address in the dialog box that opens.
- To define an IP address using a network element, click Add and select Network
Element.
-
(Optional) Next to the
Category field, click
Select and select one or more categories.
-
Click Save.
Do not close the Engine Editor.
Next steps
Configure interfaces for the Virtual Firewall.