ZyWALL 2 and ZyWALL 2WE

To configure TCP/IP rules, select TCP/IP Filter Rule from the Filter Type field and press [ENTER] to

open Menu 21.1.x.x - TCP/IP Filter Rule, as shown next.

 

Menu 21.1.1.1 - TCP/IP Filter Rule

 

 

 

 

Filter #: 1,1

 

 

 

Filter Type= TCP/IP Filter Rule

 

 

Active= Yes

IP Source Route= No

 

 

IP Protocol= 0

 

 

Destination: IP Addr= 0.0.0.0

 

 

IP Mask= 0.0.0.0

 

 

Port #= 137

 

 

Port # Comp= Equal

 

 

Source: IP Addr= 0.0.0.0

 

 

IP Mask= 0.0.0.0

 

 

Port #=

 

 

Port # Comp= None

 

 

TCP Estab= No

Log= None

 

 

More= N/A

 

 

Action Matched= Drop

 

 

 

Action Not Matched= Check Next Rule

 

 

Press ENTER to Confirm or ESC to Cancel:

 

 

Press Space Bar to Toggle.

 

 

 

 

 

 

 

 

 

 

Figure 19-5 Menu 21.1.1.1: TCP/IP Filter Rule

The following table describes how to configure your TCP/IP filter rule.

Table 19-3 TCP/IP Filter Rule Menu Fields

FIELD

DESCRIPTION

OPTIONS

 

 

 

Active

Press [SPACE BAR] and then [ENTER] to select Yes to

Yes

 

activate the filter rule or No to deactivate it.

No

IP Protocol

Protocol refers to the upper layer protocol, e.g., TCP is 6, UDP

0-255

 

is 17 and ICMP is 1. Type a value between 0 and 255. A value

 

 

of 0 matches ANY protocol.

 

IP Source Route

Press [SPACE BAR] and then [ENTER] to select Yes to apply

Yes

 

the rule to packets with an IP source route option. Otherwise

No

 

the packets must not have a source route option. The majority

 

 

of IP packets do not have source route.

 

 

 

 

Destination

 

 

 

 

 

IP Address

Enter the destination IP Address of the packet you wish to

0.0.0.0

 

filter. This field is ignored if it is 0.0.0.0.

 

 

 

 

Filter Configuration

19-7