The purpose of the Lucent Managed Firewall is to provide controlled and audited access to specific Internet Protocol (IP) services, both from inside and outside an organisation's network, by allowing, denying and/or redirecting the flow of data through the firewall. The Lucent Managed Firewall selectively routes information flows among internal and external networks according to a site's security policy rules. By default, these security policy rules deny all inbound information flows. Only an authorised administrator has the authority to change the security policy rules. The Lucent Managed Firewall has the ability to make filtering decisions based on the source IP address, destination IP address, transport layer protocol, source port, destination port, and on the interface on which the packet arrives or goes out.
The Lucent Managed Firewall architecture consists of two physically distinct components: the firewall appliance, which controls the flow of traffic between network interfaces; and the Security Management Server, which allows the System Administrator and Zone Administrators to manage the firewall appliance. the firewall functions is physically separated from its management server, with the firewall code running on Inferno(™), a Bell Labs-developed operating system. The evaluated Lucent Managed Firewall Security Management Server runs on the Windows NT(™) platform. A non-evaluated version of the Security Management Server is available for the Sun Solaris operating system.