Stateful Firewall

Edge 5.2 provides a firewall built into the Oracle Talari Application. The firewall allows Policies between Services and Zones, and supports Static NAT, Dynamic NAT (PAT), and Dynamic NAT with Port Forwarding. Additional firewall capabilities include:

• Filtering traffic flows between Zones
• Filtering traffic between services within a Zone
• Filtering traffic between services that reside in different Zones
• Filtering traffic between services at a site
• Defining Filter Policies to Allow, Deny, or Reject flows
• Tracking flow state for selected flows
• Applying Global Policy Templates
• Support for Port Address Translation for traffic to the Internet on an untrusted port, as well as port forwarding inbound and outbound

To simplify the configuration process, firewall Policies are created at the Global level. This Global configuration consists of Pre-Appliance and Post-Appliance site Policy Templates that can be applied to all sites within Edge. For a more in-depth explanation of the Stateful Firewall feature in Oracle SD-WAN Edge 5.2 GA, please refer to SD-WAN Firewall Configuration Guide.