Chapter 28 Application Patrol

Table 131 Application Edit (continued)

LABEL

DESCRIPTION

Access

This field displays what the ZyWALL does with packets for this

 

application that match this policy.

 

forward - the ZyWALL routes the packets for this application.

 

Drop - the ZyWALL does not route the packets for this application and

 

does not notify the client of its decision.

 

Reject - the ZyWALL does not route the packets for this application

 

and notifies the client of its decision.

 

 

DSCP Marking

This is how the ZyWALL handles the DSCP value of the outgoing

 

packets that match this policy.

 

In - Inbound, the traffic the ZyWALL sends to a connection’s initiator.

 

Out - Outbound, the traffic the ZyWALL sends out from a connection’s

 

initiator.

 

If this field displays a DSCP value, the ZyWALL applies that DSCP value

 

to the route’s outgoing packets.

 

preserve means the ZyWALL does not modify the DSCP value of the

 

route’s outgoing packets.

 

default means the ZyWALL sets the DSCP value of the route’s outgoing

 

packets to 0.

 

The “af” choices stand for Assured Forwarding. The number following

 

the “af” identifies one of four classes and one of three drop

 

preferences. See Assured Forwarding (AF) PHB for DiffServ on page

 

293 for more details.

 

 

BWM

These fields show the amount of bandwidth the application’s traffic that

 

matches the policy can use. These fields only apply when Access is set

 

to forward.

 

In - This is how much inbound bandwidth, in kilobits per second, this

 

policy allows the application to use. Inbound refers to the traffic the

 

ZyWALL sends to a connection’s initiator. If no displays here, this policy

 

does not apply bandwidth management for the application’s incoming

 

traffic.

 

Out - This is how much outbound bandwidth, in kilobits per second,

 

this policy allows the application to use. Outbound refers to the traffic

 

the ZyWALL sends out from a connection’s initiator. If no displays here,

 

this policy does not apply bandwidth management for the application’s

 

outgoing traffic.

 

Pri - This is the priority for this application’s traffic that matches this

 

policy. The smaller the number, the higher the priority. The traffic of an

 

application with higher priority is given bandwidth before traffic of an

 

application with lower priority. The ZyWALL ignores this number if the

 

incoming and outgoing limits are both set to 0. In this case the traffic is

 

automatically treated as being set to the lowest priority (7) regardless

 

of this field’s configuration.

 

 

Log

This field shows whether the ZyWALL generates a log (log), a log and

 

alert (log alert) or neither (no) when the application’s traffic matches

 

this policy.

 

 

452

 

ZyWALL USG 50 User’s Guide