Chapter 11 – Configuring The Firewall

The following fields describe the information to match against the incoming connection request in order to apply this rule.

The Action field specifies the final action of the rule. The and log to syslog field determines whether logging will take place and at which logging level.

The Source zone field specifies the zone the request originates from.

The Destination zone or port field specifies the requests destination zone. The Protocol field specifies the protocol (tcp, udp or icmp) to match.

The Source ports and Destination ports fields specifies the requests tcp or udp port numbers to match.

The Original destination address field matches the requests destination IP address.

Note: If you use are using DNAT to port forward, enter the original destination address here and the forwarded address in the Destination zone or port fields Only hosts in zone with address sub-field.

The Rate limit expression fields specifies a rate limit control of the form “X/sec” or “X/min” where X is the number of allowed requests in the time period. A burst limit field “:Y”where Y is the maximum consecutive number of requests and defaults to five if not configured.

The Rule applies to user set fields allow advanced users to match the rule against specific users and groups. This matching only takes place when the source of the traffic is the firewall itself.

Static NAT

Figure 101: Static NAT

RuggedCom

119

Page 121
Image 121
RuggedCom RX1100, RX1000 manual Static NAT