Table of Contents
Advertisement
Creating IP Access Control Rules
IP access control rules (firewall rules) determine whether to accept or discard
traffic to/from the PX3TS, based on the IP address of the host sending or
receiving the traffic. When creating rules, keep these principles in mind:
•
Rule order is important.
When traffic reaches or is sent from the PX3TS, the rules are executed in
numerical order. Only the first rule that matches the IP address determines
whether the traffic is accepted or discarded. Any subsequent rules
matching the IP address are ignored.
•
Prefix length is required.
When typing the IP address, you must specify it in the CIDR notation. That
is, BOTH the address and the prefix length are included. For example, to
specify a single address with the 24-bit prefix length, use this format:
x.x.x.x/24
/24 = the prefix length.
Note: Valid IPv4 addresses range from 0.0.0.0 through 255.255.255.255.
To configure IPv4 access control rules:
1.
Choose Device Settings > Security > IP Access Control.
2.
Select the 'Enable IPv4 access control' checkbox to enable IPv4 access
control rules.
3.
Determine the IPv4 default policy.
▪
Accept: Accepts traffic from all IPv4 addresses.
▪
Drop: Discards traffic from all IPv4 addresses, without sending any
failure notification to the source host.
▪
Reject: Discards traffic from all IPv4 addresses, and an ICMP message is
sent to the source host for failure notification.
4.
Go to the Inbound Rules section or the Outbound Rules section according
to your needs.
▪
Inbound rules control the data sent to the PX3TS.
▪
Outbound rules control the data sent from the PX3TS.
5.
Create rules. Refer to the tables below for different operations.
Chapter 7: Using the Web Interface
349
Advertisement
Table of Contents
Troubleshooting
