HP Firewall manual Zone and destination zone pair is numbered

Page 86

Figure 86 List of rules applied to a device

Table 93 Applied rule list query options

	Option	Description
	Src Zone	Query interzone rules by source zone.

	Dest Zone	Query interzone rules by destination zone.

	Action	Query interzone rules by filtering action.

	Src IP	Query interzone rules by source IP.

	Dest IP	Query interzone rules by destination IP.

	Time Range	Query interzone rules by time range.

	Policy	Query interzone rules by policy.

	Status	Query interzone rules by status (enabled or disabled)

	Table 94 Fields of the interzone rule list

	Filed	Description
	Src Zone	Source zone of the interzone rule

	Dest Zone	Destination zone of the interzone rule

		ID of the interzone rule
		When you create an interzone rule, the system automatically assigns an ID to the rule
	ID	according to the number of existing rules for the source zone and destination zone
	ID	pair, starting from 0. For example, the first rule created for the source zone Trust and

		the destination zone DMZ is numbered 0, the second rule created for the same source
		zone and destination zone pair is numbered 1.

	Src IP	Source IP address of the interzone rule

	Dest IP	Destination IP address of the interzone rule

	Service	All services of the interzone rule

	Time Range	Time range during which the interzone rule takes effect

	Action	Filtering action of the interzone rule

	Description	Descriptive information about the interzone rule

	Status	Whether the interzone rule is enabled or disabled

	Logging	Whether logging is enabled for the interzone rule

		82

Image 86

Contents HP A-IMC Firewall Manager Page Contents Page Introduction to HP A-IMC Firewall Manager What HP A-IMC Firewall Manager can doInstalling the firewall manager Registering the firewall managerUninstalling the firewall manager Register your licenseManaging devices Device management Operator management System configurationDevice management Device managementOption Description Function DescriptionDevice query option Fields of the device listAdd a device Device configuration items Return to Device management functionsTelnet Password, Snmp Version, Community String for Reading, Device information Deploying software to devices Device software managementFields of the device software list Deploying software to devicesRequired Task Name Software backup result Return to Device software management functionsBacking up configuration files Device config managementFields of the software backup result list Restoring a configuration fileFields of the device configuration management list Backing up configuration filesDevice configuration information management interface Tab Description Fields of the configuration label listRunning Config LabelCompare two configuration files Fields of the running configuration list Draft list Fields of the draft listManaging device groups Configuration guideManaging batch import Device group management functions Device group listAdding a device group Fields of the device group listDevice event query options Managing eventsDevice event list OptionDevice interface event query options Device interface event listFields of the device event list OptionDescriptionFields of the template list Managing device access templatesTemplate list Return to Template management functionsAdd a template Template configuration items Adding a templateManaging the device software database Fields of the device software database list Importing device softwareDevice software database query option Importing device softwareFields of the deployment task list Managing deployment tasksDeployment task query option User levels and the rights Operator managementManaging operators User level RightsOperator management functions Function Description Operator listAdding an operator Fields of the operator listOperator configuration items Managing operation logsItemDescription Changing your login passwordFields of the operation log list Configuring management ports System configurationConfiguring system parameter Configuring the mail server Configure the mail server Mail server configuration itemsFields of the filter list Managing filtersFilter list Filter listReturn to Filter management functions Adding a filterFieldDescription Ldap server list Managing Ldap serversLdap server list Adding an Ldap serverReturn to Ldap server management functions Adding an Ldap serverFields of the Ldap server list Managing log retention time Monitoring the disk spaceActual free disk space is lower than this value Managing subsystems Free disk space monitoringAdding a subsystem Subsystem information Fields of the subsystem listPage Attack events monitoring Snapshot of eventsSnapshot of events Event snapshot query options Fields in the event snapshot listsRecent events list Fields of the recent events listEvent overview Event analysisDevice monitoring Are under your management will appear in the drop-down list Event details Top 10 attack events contrast graphAttack event details Event details query options Report exporting management Fields of the attack event details listReport export task management functions Report export file listFields of the report export task list Report export file listReturn to Report export task management functions Event auditingAdding a report export task Inter-zone access log auditing Abnormal traffic log auditingBlacklist log auditing Operation log auditingOther log auditing Operation log auditingNAT log auditing Mpls log auditingSecurity zone list Security policy managementSecurity zones Fields of the security zone list Security zone listAdding a security zone Return to Security zone management functionsImporting security zones from a device Security zone configuration itemTime ranges Time range listFields of the time range list Time range listAdding a time range Return to Time range management functionsFields of the predefined service list ServicesPredefined services User-defined services Return to Service management functionsType a name for the user-defined service Service groups Service group management Fields of the service group listAdd a service group Service group configuration items Fields of the host address list IP addressesHost addresses Add a host address Host address configuration items Address ranges Address range management Fields of the address range listAddress range configuration items Subnet addressesAdd an subnet address Subnet address configuration items IP address groups Add an IP address group IP address group configuration items Interzone rule query options Interzone rulesInterzone rule list Interzone rule listFiled Description Adding an interzone ruleFields of the interzone rule list Return to Interzone rule management functionsAdd an interzone rule Interzone rule configuration items Add source IP addresses for the interzone rule Interzone policy list Interzone policiesInterzone policy list Adding an interzone policyFields of the interzone policy list Adding an interzone policyRule management Return to Interzone policy management functionsRule management Fields of the policy’s rule list Sorting interzone rules Move rulesInterzone policy application query options Interzone policy applicationsInterzone policy application list Fields of the interzone policy application listReturn to Interzone policy application management functions Applying interzone policiesApplied rules list Zone and destination zone pair is numbered Firewall management functions Firewall device managementManaging firewall devices Firewall device listQuery options on the firewall device management Firewall device listAdding firewall devices Fields of the firewall device listManaging the device configuration database Viewing device statisticsConfiguration segment list Fields of the configuration segments listAdding a configuration segment Return to Configuration segment management functionsImporting configuration segments from device Configuration segment configuration itemsDeploying a configuration segment Configure deployment task attributes Deployment task list Deployment task listFields of the deployment task list Comprehensive analysis SSL VPN log auditing Comprehensive analysisOnline users Online users trends Daily user statisticsUser Count field shows the count of login times on that day Daily user statisticsUser access records auditing SSL VPN log auditingResource access auditing Authentication failure auditingAuthentication failure auditing Adding devices to the firewall manager Configuration procedureNetwork requirements Add a device to the firewall management component Configuration procedures Configuring the firewall deviceEnter the following commands in the CLI Configuring the Firewall ManagerConfigure Snmp on the FW device Enable logging and send logs to Firewall Manager Add the FW device to the Firewall ManagerConfigure a log host Configuring intrusion detection UserlogScanning detection Blacklist Urpf check Displaying log report on the firewall webpage VerificationFirewall logs and Firewall Manager analysis Intrusion Policy Log User log Recent list Inter-zone access logs Blacklist logs Operation Logs Related information Subscription serviceContacting HP DocumentsConventions Command conventionsSymbols GUI conventionsNetwork topology icons Port numbering in examplesIndex Time ranges,58User access records auditing,96 Viewing device statistics,85

Related manuals

Manual 60 pages 30 Kb

Manual 3 pages 40.21 Kb