Table of Contents
Advertisement
Rule Order
Careful consideration should be given to the order in which rules should be
applied. For example, you should configure rules to allow specific traffic or
ports before more general rules that block traffic. Otherwise the specific traffic
will not pass through the firewall as the more general rule blocking traffic will
be applied first.
Required Information
Before configuring the Firewall, you may wish to obtain the following
information:
State the intent of the rule. For example, "This restricts all IRC access
from the LAN to the Internet." Or, "This allows a remote Lotus Notes
server to synchronize over the Internet to an inside Notes server."
Is the intent of the rule to forward or block traffic?
What direction of traffic does the rule apply to?
What IP services will be affected?
What computers on the LAN are to be affected (if any)?
What computers on the Internet will be affected? The more specific, the
better. For example, if traffic is being allowed from the Internet to the
LAN, it is better to allow only certain machines on the Internet to
access the LAN.
Which order should the rules be applied?
NN40011-045 Issue 1.2 BCM50 Rls 6.0
IP Firewall
7
Advertisement
Table of Contents
