Service Precedence - Watchguard Firebox X1000 User Manual

Chapter 8: Configuring Filtered Services
Custom program
Launch interval and repeat count work in conjunction to
control notification timing. For more information on this
setting, see "Setting Launch Interval and Repeat Count" on
page 217.

Service Precedence

Precedence is generally given to the most specific service
and descends to the most general service. However, excep-
tions exist. There are three different precedence groups for
services:
• The "Any" service (see the Reference Guide for more
information about the "Any" filtered service). This
group has the highest precedence.
• IP and ICMP services and all TCP/UDP services that
have a port number specified. This group has the
second highest precedence and is the largest of the
three.
• "Outgoing" services that do not specify a port number
(they apply to any port). This group includes Outgoing
TCP, Outgoing UDP, and Proxy.
"Multiservices" can contain subservices of more than one
precedence group. "Filtered-HTTP" and "Proxied-HTTP,"
for example, contain both a port-specific TCP subservice
for port 80 as well as a nonport subservice that covers all
other TCP connections. When precedence is being deter-
mined, individual subservices are given precedence
according to their group (described previously) indepen-
dent of the other subservices contained in the multiservice.
Precedence is determined by group first. As shown in the
following diagram, services from a higher precedence
130
Runs a program when the event occurs. Enter the
path of the executable file in the box provided, or
browse to specify a path.
WatchGuard Firebox System