Adding a Screen Object

To Add a Screen

1. Execute the steps in "To Modify the Policies Associated with a Common Object".

2. Select Screen in the Type list.

   

3. Select New from the Add New Object list.

   The Miscellaneous area in the Screen dialog box appears.

4. In the Name field, type the name of the Screen as it appears in the naming service or the host file.

5. Type a number in the Log Size (MB) field, to set the total size for log files (the default is 100 Mbytes).

6. The Stealth Network Address and Stealth Netmask (of the network the Screen partitions) fields apply only if the Screen has stealth interfaces.

7. Click the Yes or No radio button to allow or deny Destination Address Checking. Destination Address Checking is used for anti-spoofing protection.

8. Click the Yes or No radio button to allow or deny routing traffic (RIP).

9. Click a Name Service radio button to choose the name service that the Screen will rely on to define the host address.

   You can also use both DNS and NIS or no name service at all.

10. Click the Yes or No radio button for Certificate Discovery (SKIP only).

    This determines whether the Screen itself is to participate in a certificate discovery exchange. Selecting Yes, however, does not allow CDP traffic to go through the Screen.

11. Click the OK button.