| FVS338 ProSafe VPN Firewall 50 Reference Manual | |
|
|
|
Table |
| |
|
|
|
Item | Description |
|
|
|
|
Services | Select the desired Service or application to be covered by this rule. If the desired |
|
| service or application does not appear in the list, you must define it using the |
|
| Services menu (see “Adding Customized Services” on page |
|
|
|
|
Action | Select the desired action for packets covered by this rule: |
|
| • BLOCK always |
|
| • BLOCK by schedule, otherwise Allow |
|
| • ALLOW always |
|
| • ALLOW by schedule, otherwise Block |
|
| Note: Any inbound traffic which is not allowed by rules you create will be blocked by | |
| the Default rule. |
|
Select Schedule | Select the desired time schedule (i.e., Schedule1, Schedule2, or Schedule3) that will | |
| be used by this rule. |
|
| • This drop down menu gets activated only when “BLOCK by schedule, otherwise |
|
| Allow” or “ALLOW by schedule, otherwise Block” is selected as Action. |
|
| • Use schedule page to configure the time schedules. |
|
LAN Server | This LAN address determines which computer on your network is hosting this service | |
| rule. (You can also translate this address to a port number.). |
|
Translate to Port | Check the “Translate to Port Number” and enter a port number if you want to assign | |
Number | the LAN Server to a specific port. |
|
WAN Users | These settings determine which Internet locations are covered by the rule, based on | |
| their IP address. Select the desired option: |
|
| • Any – All Internet IP address are covered by this rule. |
|
| • Single address – Enter the required address in the start fields. |
|
| • Address range – If this option is selected, you must enter the start and finish fields. | |
WAN Destination IP | These settings determine the destination IP address applicable to incoming traffic. | |
Address | This is the public IP address that will map to the internal server; it can either be the | |
| address of the WAN1 or WAN2 ports or another public IP address. |
|
QoS Priority | This setting determines the priority of a service, which in turn, determines the quality | |
| of that service for the traffic passing through the firewall. By default, the priority |
|
| shown is that of the selected service. The user can change it accordingly. If the user | |
| does not make a selection (i.e, leaves it as None), then the native priority of the |
|
| service will be applied to the policy. See “Specifying Quality of Service (QoS) |
|
| Priorities” on page |
|
|
| |
Log | This determines whether packets covered by this rule are logged. Select the desired | |
| action: |
|
| • Always – always log traffic considered by this rule, whether it matches or not. This | |
| is useful when debugging your rules. |
|
| • Never – never log traffic considered by this rule, whether it matches or not. |
|
|
|
|
|
|
|
Firewall Protection and Content Filtering | ||
Page 61
Image 61
