
| Firewall | 7 | 
| 
 | |
| Configuring Firewall Access Rules | 
 | 
| 
 | 
 | 
| 
 | 
 | 
•All traffic from the WAN to the DMZ is allowed.
•All traffic from the DMZ to the WAN is allowed.
!
CAUTION With the use of custom rules, it is possible to disable all firewall protection or block all access to the Internet, so use extreme caution when creating or deleting access rules.
There are four additional default rules that will be always active and cannot be overridden by any custom rules:
•HTTP service from the LAN to the router is always allowed.
•DHCP service from the LAN is always allowed.
•DNS service from the LAN is always allowed.
•Ping service from the LAN to the router is always allowed.
Managing Access Rules
Except for the default rules, all configured access rules are listed in the Access
Rules table, and you can set the priority for each custom rule.
Click the IPv4 tab to set rules for traffic with IPv4 addressing, or click the IPv6 tab to set rules for traffic with IPv6 addressing.
Note: The IPv6 tab is available only if you enabled 
NOTE As an alternative to this procedure, you can use the Access Rule Wizard. For more information, see Chapter 11, “Wizard.”
If you have numerous rules, you can adjust the display. Use the Rows per page list at the top right corner of the table to choose the number of rules to display on each page. Use the Page list below the table to choose a particular page. Use the navigation buttons to view the first page, previous page, next page, or final page. Some buttons may be unavailable, depending on the number of pages and the current selection.
•Priority: The priority of the access rule, with 1 indicating the highest priority. To change the priority for a rule, select an option from the drop- down list. If there is a conflict between two access rules, then the higher
| Cisco Small Business RV0xx Series Routers Administration Guide | 104 | 
