Nortel Contivity 221 User Manual page 149

Table 10-1 Firewall Rules Summary: First Screen
LABEL
Vacant Rules This read-only number is the number of rules that can still be configured for the
Contivity 221 (the combined total available for all packet directions).
Packet Direction Use the drop-down list box to select a direction of travel of packets (LAN to
LAN/Contivity 221, LAN to WAN, WAN to WAN/Contivity 221 or WAN to LAN for
which you want to configure firewall rules.
Block/ Use the option buttons to select whether to Block (silently discard) or Forward
Forward (allow the passage of) packets that are traveling in the selected direction.
Log Select the check box to create a log (when the above action is taken) for packets
that are traveling in the selected direction and do not match any of the rules below.
The following read-only fields summarize the rules you have created that apply to traffic traveling in the
selected packet direction. The firewall rules that you configure (summarized below) take priority over the
general firewall action settings above.
# This is your firewall rule number. The ordering of your rules is important as rules are
applied in turn. The Move field below allows you to reorder your rules.
Status This field displays whether a firewall is turned on (Active) or not (Inactive). Rules
that have not been configured display Empty.
Source Address This drop-down list box displays the source addresses or ranges of addresses to
which this firewall rule applies. Please note that a blank source or destination
address is equivalent to Any.
Destination This drop-down list box displays the destination addresses or ranges of addresses to
Address which this firewall rule applies. Please note that a blank source or destination
address is equivalent to Any.
Service Type This drop-down list box displays the services to which this firewall rule applies.
Please note that a blank service type is equivalent to Any. See
information.
Action This is the specified action for that rule, either Block or Forward. Note that Block
means the firewall silently discards the packet.
Log This field shows you if a log is created for packets that match the rule (Match), don't
match the rule (Not Match), both (Both) or no log is created (None).
Alert This field tells you whether this rule generates an alert (Yes) or not (No) when the
rule is matched.
Firewall Screens 10-7
DESCRIPTION
Table 10-5
Contivity 221 VPN Switch User's Guide
for more
Formatted: Font: Italic
Deleted: Table 10-5
Formatted: Font: Italic, D
check spelling or grammar
Formatted: Font: Italic