Chapter 40 Filter Configuration
Figure 411 Example Filter: Menu 21.1.3.1
Menu 21.1.3.1 - TCP/IP Filter Rule
Filter #: 3,1
Filter Type= TCP/IP Filter Rule
Active= Yes
IP Protocol= | 6 | IP Source Route= No |
Destination: IP | Addr= 0.0.0.0 | |
| IP | Mask= 0.0.0.0 |
| Port #= 23 | |
| Port # Comp= Equal | |
Source: IP | Addr= 0.0.0.0 | |
| IP | Mask= 0.0.0.0 |
| Port #= 0 | |
TCP Estab= No | Port # Comp= None | |
| Log= None | |
More= No |
| |
Action Matched= | Drop | |
Action Not Matched= Forward
Press ENTER to Confirm or ESC to Cancel:
Press Space Bar to Toggle.
The port number for the telnet service (TCP protocol) is 23. See RFC 1060 for port numbers of
When you press [ENTER] to confirm, you will see the following screen. Note that there is only one filter rule in this set.
Figure 412 Example Filter Rules Summary: Menu 21.1.3
|
| Menu 21.1.3 - Filter Rules Summary |
|
|
# A Type | Filter Rules | M m n | ||
- | - | - - | ||
1 | Y IP | Pr=6, SA=0.0.0.0, DA=0.0.0.0, DP=23 | N | D F |
2N
3N
4N
5N
6N
Enter Filter Rule Number
This shows you that you have configured and activated (A = Y) a TCP/IP filter rule (Type = IP, Pr = 6) for destination telnet ports (DP = 23).
M = N means an action can be taken immediately. The action is to drop the packet (m = D) if the action is matched and to forward the packet immediately (n = F) if the action is not matched no matter whether there are more rules to be checked (there aren’t in this example).
| 627 |
ZyWALL 2WG User’s Guide | |
|
|