Table of Contents
Advertisement
19 Firewall
326
in succession until a rule matches. If overlapping occurs, i.e. more than one filter rule
matches a packet, only the first rule is executed. This means that if the first rule denies a
packet, whereas a later rule allows it, the packet is rejected. A deny rule also has no effect
if a relevant packet has previously been allowed by another filter rule.
A list of all configured filter rules is displayed in the Firewall->Policies->Filter Rules
menu.
You can use the
button to insert another policy above the list entry. The configuration
menu for creating a new policy opens.
You can use the
button to move the list entry. A dialog box opens, in which you can se-
lect the position to which the policy is to be moved.
19.1.1.1 New
Choose the New button to create additional parameters.
The menu Firewall->Policies->Filter Rules->New consists of the following fields:
Fields in the Filter RulesBasic Parameters menu
Field
Source
Destination
Funkwerk Enterprise Communications GmbH
Description
Select one of the preconfigured aliases for the source of the
packet.
In the list, all WAN/LAN interfaces, interface groups (see Fire-
wall->Interfaces->Groups), addresses (see Firewall->Ad-
dresses->Address List) and address groups (see
Firewall->Addresses->Groups) are available.
The value
means that neither the source interface nor the
source address is checked.
Select one of the preconfigured aliases for the destination of the
packet.
In the list, all WAN/LAN interfaces, interface groups (see Fire-
wall->Interfaces->Groups), addresses (see Firewall->Ad-
dresses->Address List) and address groups (see
Firewall->Addresses->Groups) are available.
The value
means that neither the destination interface nor
the destination address is checked.
R1xxx/R3xxx/R4xxx
Advertisement
Table of Contents
