Prioritizing Firewall Rules - Cisco QuickVPN - PC Administration Manual

Firewall Configuration

Prioritizing Firewall Rules

STEP 5
Prioritizing Firewall Rules
NOTE
STEP 1
STEP 2
STEP 3
Cisco SA 500 Series Security Appliances Administration Guide
- Optional WAN: The public will connect to this service by using the IP
address that is associated with the WAN interface on the Optional port.
- Other: The public will connect to this service by using another IP address
that your ISP has provided to you. If you choose this option, enter the
address in the Other IP Address field.
Click Apply to save your settings, or click Reset to revert to the saved settings.
The firewall rule appears on the Firewall Rules page.
If a firewall policy contains more than one rule that permits traffic, you can reorder
them by priority. You can move a rule up, move a rule down, or move it to a
specified location in the firewall rules list.
This feature only applies to IPv4 firewall rules.
Click Firewall on the menu bar, and then click Firewall > IPv4 Rules in the
navigation tree.
—OR—you can use the Getting Started (Advanced) page. In the Firewall and NAT
Rules section, click Configure Firewall and NAT Rules.
The IPv4 Firewall Rules page appears.
The firewall rules appear in the List of Available Firewall Rules table. The list
includes all firewall rules for controlling traffic from a particular zone to a particular
destination.
To view the list of rules belonging to the same group, choose the source and
destination from the From Zone and To Zone drop-down menus and click Display
Rules. Only the rules for the specified security zones appear.
For example: If you choose WAN and LAN from the Zone drop-down menus, only
the rules for the WAN to LAN security zones appear.
To reorder the rules, click Move.
The Move Firewall Rules page appears.
5
132