Chapter 38 Filter Configuration
Table 203 Rule Abbreviations Used
ABBREVIATION DESCRIPTION
OffOffset
LenLength
Refer to the next section for information on configuring the filter rules.
38.2.1 Configuring a Filter RuleTo configure a filter rule, type its number in Menu 21.1.1 - Filter Rules Summary and press [ENTER] to open menu 21.1.1.1 for the rule.
To speed up filtering, all rules in a filter set must be of the same class, i.e., protocol filters or generic filters. The class of a filter set is determined by the first rule that you create. When applying the filter sets to a port, separate menu fields are provided for protocol and device filter sets. If you include a protocol filter set in a device filter field or vice versa, the ZyWALL will warn you and will not allow you to save.
38.2.2 Configuring a TCP/IP Filter RuleThis section shows you how to configure a TCP/IP filter rule. TCP/IP rules allow you to base the rule on the fields in the IP and the upper layer protocol, for example, UDP and TCP headers.
To configure TCP/IP rules, select TCP/IP Filter Rule from the Filter Type field and press [ENTER] to open Menu 21.1.1.1 - TCP/IP Filter Rule, as shown next.
Figure 372 Menu 21.1.1.1: TCP/IP Filter Rule
Menu 21.1.1.1 - TCP/IP Filter Rule
Filter #: 1,1 | TCP/IP Filter Rule | ||
Filter Type= | |||
Active= Yes | 0 | IP | Source Route= No |
IP Protocol= | |||
Destination: IP Addr= |
| ||
| IP Mask= |
| |
| Port #= |
| |
| Port # Comp= None | ||
Source: IP Addr= |
| ||
| IP Mask= |
| |
| Port #= |
| |
| Port # Comp= None | ||
TCP Estab= N/A | Log= None | ||
More= No |
| ||
Action Matched= Check | Next Rule | ||
Action Not Matched= Check Next Rule
Press ENTER to Confirm or ESC to Cancel:
546 |
| |
ZyWALL 2 Plus User’s Guide |
| |
|
|
|