Firewall
Configuring Firewall Rules to Control Inbound and Outbound Traffic
Cisco ISA500 Series Integrated Security Appliances Administration Guide 260
6
This section provides a configuration example about how to create a WAN-to-LAN
firewall rule to permit multicast traffic by using the predefined multicast address
object.
STEP1 Click Firewall > Acces s Control > ACL Rules.
STEP 2 Click Add to add a new firewall rule.
The Rule - Add/Edit window opens.
STEP 3 Enter the following information:
•Enable: Click On to enable the firewall rule.
•From Zone: Choose WAN as the source zone of traffic.
•To Zo ne : Choose LAN as the destination zone of traffic.
•Services: Choose ANY for this fi rewall rule.
•Source Address: Choose ANY as the source address.
•Destination Address: Choose the predefined multicast address called
“IPv4_Multicast” as the destination address.
•Schedule: Choose Always On for this firewall rule.
•Log: Click Off for this firewall rule. We recommend that you disable the Log
feature for a multicast firewall rule.
•Match Action: Choose Permit to allow access.
STEP4 Click OK to save your settings.
STEP 5 Click Save to apply your settings.
Configuring Firewall Logging SettingsPerform the following steps to log the firewall events and view firewall logs:
STEP1 Enable the Log feature for firewall rules. See Configuring a Firewall Rule,
page 257.
STEP 2 Go to the Device Management > Logs > Log Settings page to configure the log
settings. You must enable the Log feature, set the log buffer size, and specify the