Firewall Rule: Add/Edit - ZyXEL Communications SBG5500 Series User Manual

Table 55 Configuration > Firewall / Security > Firewall Rules
LABEL
Rules Storage Space
Usage
Firewall Rules
Status
From
To
IP
Show
Add
Edit
Remove
Multiple Entries Turn
On
Multiple Entries Turn
Off
#
Status
Name
Source Type
From
To
IP version
Source IP
Destination IP
Service
Schedule
Action
Log

9.4.1 Firewall Rule: Add/Edit

Click Add or select a firewall rule and click Edit to open the following screen.
Chapter 9 Firewall
DESCRIPTION
This bar shows the percentage of the SBG's space that has been used. If the usage is
almost full, you may need to remove an existing filter rule before you create a new one.
Select Enable to view all active firewall rules, or Disable to view all inactivate firewall rules.
Select the source security zone of traffic to which the rule applies.
Select the destination security zone of traffic to which the rule applies.
Select v4 to filter IPv4 address firewall rules or v6 for IPv6 addresses firewall rules.
Click this button to search the firewall rules with the filters you used.
Click this to create a new rule. Select a rule and click Add to create a new rule after the
selected entry.
Double-click a rule or select it and click Edit to open a screen where you can modify the
rule's settings.
To remove an existing rule, select it and click Remove.
Select one or more rules and click this to enable them.
Select one or more rules and click this to disable them.
This is the index number of the rule.
This field displays whether the firewall rule is active or not. A green ON button signifies that
this firewall rule is active. A gray OFF button signifies that this firewall rule is not active.
Click the slide button to turn on or turn off the rule.
This displays the descriptive name of the rule.
This displays Manual when you create firewall rules on this screen.
This displays Auto when you have added an exception to the Firewall in the NAT > Port
Forwarding screen, see Section 8.2.1 on page
This displays the source security zone of traffic to which the rule applies.
This displays the destination security zone of traffic to which the rule applies.
This displays 4 if the rule applies to IPv4 addresses or 6 if it applies to IPv6 addresses.
This displays the source IP addresses to which this rule applies. Any means all IP addresses.
This displays the destination IP addresses to which this rule applies. Any means all IP
addresses.
This displays the transport layer protocol that defines the service and the direction of traffic
to which this rule applies.
This field displays the scheduler rule used for this firewall rule.
This displays whether the rule allows packets (Accept), silently discards packets (Drop), or
discards packets and sends an ICMP destination-unreachable packet to the sender
(Reject).
This displays whether the SBG logs when it performs the ACL rule's selected action on the
traffic traveling between the two zones.
SBG5500/3310 Series User's Guide
143
126.