ZyXEL Communications ZyWall USG 2000 User Manual page 322
Unified security gateway
Hide thumbs
Also See for ZyWall USG 2000:
- User manual (1114 pages) ,
- Manual (964 pages) ,
- Support notes (227 pages)
Table of Contents
Advertisement
Chapter 20 Firewall
The following table describes the labels in this screen.
Table 101 Firewall > Edit
LABEL
Enable
From
To
Description
Schedule
User
Source
Destination
Service
Access
Log
322
DESCRIPTION
Select this check box to activate the firewall rule.
For through-ZyWALL rules, select the direction of travel of packets to
which the rule applies.
any means all interfaces or VPN tunnels.
ZyWALL means packets destined for the ZyWALL itself.
Enter a descriptive name of up to 60 printable ASCII characters for the
firewall rule. Spaces are allowed.
Select a schedule that defines when the rule applies or select Create
Object to configure a new one (see
details). Otherwise, select none and the rule is always effective.
This field is not available when you are configuring a to-ZyWALL rule.
Select a user name or user group to which to apply the rule. Select
Create Object to configure a new user account (see
page 618
for details). The firewall rule is activated only when the
specified user logs into the system and the rule will be disabled when
the user logs out.
Otherwise, select any and there is no need for user logging.
Note: If you specified a source IP address (group) instead of any in
the field below, the user's IP address should be within the IP
address range.
Select a source address or address group for whom this rule applies.
Select Create Object to configure a new one. Select any if the policy is
effective for every source.
Select a destination address or address group for whom this rule
applies. Select Create Object to configure a new one. Select any if the
policy is effective for every destination.
Select a service or service group from the drop-down list box. Select
Create Object to add a new service. See
more information.
Use the drop-down list box to select what the firewall is to do with
packets that match this rule.
Select deny to silently discard the packets without sending a TCP reset
packet or an ICMP destination-unreachable message to the sender.
Select reject to deny the packets and send a TCP reset packet to the
sender. Any UDP packets are dropped without sending a response
packet.
Select allow to permit the passage of the packets.
Select whether to have the ZyWALL generate a log (log), log and alert
(log alert) or not (no) when the rule is matched. See
page 763
for more on logs.
Chapter 40 on page 643
Section 37.2.1 on
Chapter 39 on page 637
Chapter 48 on
ZyWALL USG 2000 User's Guide
for
for
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyWall USG 2000
Related Products for ZyXEL Communications ZyWall USG 2000
- ZyXEL Communications ZYWALL USG 20W
- ZyXEL Communications USG210
- ZyXEL Communications ZyWall USG20W-VPN
- ZyXEL Communications ZyWall USG20-VPN
- ZyXEL Communications ZYWALL USG 300
- ZyXEL Communications USG-50 - V2.21 ED 1
- ZyXEL Communications USG-100@USG-200 - V2.20 ED 2
- ZyXEL Communications USG-300 - V2.20 ED 2