Understanding The Access Rule Hierarchy; Enable/Disable A Rule - SonicWALL TELE3 SP Administrator's Manual

Current Network Access Rules List
All Network Access Rules are listed in the Current Network Access Rules table. The rules
are listed from most to least specific. The rules at the top of Current Network Access Rules
list take precedence over rules at the bottom of the list.
Edit a Rule
To edit a rule, click the Note Pad icon on the right side of the browser window. A new Web
browser window appears, displaying the current configuration of the rule. Make the desired
changes and click Update to update the rule. The modified rule is displayed in the list of
Current Network Access Rules.
Delete a Rule
To delete a rule, click the Trash Can icon at the right side of the browser window. A dialog
box appears with the message "Do you want to remove this rule?". Click OK. Once the
SonicWALL has been updated, a message confirming the update is displayed at the bottom of
the browser window.

Enable/Disable a Rule

To disable a rule without permanently removing it, clear the Enable check box to the right of
the rule. To enable a disabled rule, select the Enable check box. The configuration is updated
automatically, and a message confirming the update is displayed at the bottom of the browser
window.
Restore the Default Network Access Rules
If the SonicWALL Network Access Rules have been modified or deleted, you can restore the
Default Rules. The Default Rules prevent malicious intrusions and attacks, block all inbound
IP traffic and allow all outbound IP traffic. Click Restore Rules to Defaults to reset the
Network Access Rules. Once the SonicWALL has been updated, a message confirming the
update is displayed at the bottom of the browser window.

Understanding the Access Rule Hierarchy

The rule hierarchy has two basic concepts:
1. Specific rules override general rules:
An individual service is more specific than the Default service.
A single Ethernet link, such as LAN or WAN, is more specific than * (all).
A single IP address is more specific than an IP address range.
2. Equally specific Deny rules override Allow rules.
Rules are displayed in the Current Network Access Rules list from the most specific to the
least specific, and rules at the top override rules listed below. For example, consider the section
of the Rules window shown below.
Page 76 SonicWALL TELE3 SP Administrator's Guide