P312 Broadband Security Gateway

The protocol dependent filter rules abbreviation are listed as follows:

!If the filter type is IP, the following abbreviations listed in the following table will be used.

Table 7-2 Abbreviations Used If Filter Type Is IP

Abbreviation

Description

 

 

Pr

Protocol

 

 

SA

Source Address

 

 

SP

Source Port number

 

 

DA

Destination Address

 

 

DP

Destination Port number

!If the filter type is GEN (generic), the following abbreviations listed in the following table will be used.

Table 7-3 Abbreviations Used If Filter Type Is GEN

Abbreviation

Description

 

 

Off

Offset

 

 

Len

Length

 

 

Refer to the next section for information on configuring the filter rules.

7.2.2 Configuring a Filter Rule

To configure a filter rule, type its number in Menu 21.1 - Filter Rules Summary and press [Enter] to open Menu 21.1.1 for the rule.

To speed up filtering, all rules in a filter set must be of the same class, i.e., protocol filters or generic filters. The class of a filter set is determined by the first rule that you create. When applying the filter sets to a port, separate menu fields are provided for protocol and device filter sets. If you include a protocol filter set in a device filter field or vice versa, the Prestige will warn you and will not allow you to save.

7.2.3 TCP/IP Filter Rule

This section shows you how to configure a TCP/IP filter rule. TCP/IP rules allow you to base the rule on the fields in the IP and the upper layer protocol, e.g., UDP and TCP, headers.

To configure a TCP/IP rules, select TCP/IP Filter Rule from the Filter Type field and press Enter to open Menu 21.1.1 - TCP/IP Filter Rule, as shown below.

Filters

7-7

Page 102
Image 102
ZyXEL Communications P-312 manual Configuring a Filter Rule, 3 TCP/IP Filter Rule, Abbreviations Used If Filter Type Is IP