For example, you select "DROP" as the target action from the "Target" drop-
down list, check "Inverted" on the line with the "Source IP", and do not
specify any other criteria in the rule, any packets arriving from any other
source IP address than the one specified are dropped.
Target Pull-down Menu Options
The "Target" pull-down menu shows the action to be performed on an IP
packet that matches all the criteria specified in a rule. The kernel can be
configured to ACCEPT, DROP, RETURN, LOG or REJECT the packet by
sending a message, translating the source or the destination IP address, or
sending the packet to another user-defined chain. The default target pull-down
menu is shown in the following figure.
Figure 8-28:Firewall Configuration "Add Rule" and "Edit Rule" Target
Source or Destination IP and Mask
If you add a value in the "Source IP" field, incoming packets are filtered for
the specified IP address, and if you add a value in the "Destination IP" field,
outgoing packets are filtered for the specified IP address. A value in the
"Mask" field, means incoming or outgoing packets are filtered for IP
addresses from the network in the specified subnet.
The source and destination IP and related fields are shown in the following
figure.
Figure 8-29:Firewall Configuration "Add Rule" and "Edit Rule" Source and
BLACK BOX® CS Installation, Administration, and User's Guide
Menu Options
Destination IP and Mask Fields
Network
191
Need help?
Do you have a question about the Advanced Console Server and is the answer not in the manual?