Table of Contents
Advertisement
Firewall menu options
Packet filtering
• Forward – Filter forwarded packets only; that is, packets traversing the UTM Firewall appliance. You
can select both incoming and outgoing interfaces.
• Input – Filter packets destined for the appliance. You can only select the incoming interface.
• Output – Filter packets generated by the appliance. You can only select the outgoing interface.
The Incoming Interface is the interface/network port on which the appliance received the network traffic.
7
Select an option from the Incoming Interface list. In addition to individual interfaces and interface
groups you have defined in the Definitions menu, other available options are:
• Any – [Default] Select this option to match any packets received on any interface, but do not match
packets originating from the appliance.
• None – This option is automatically selected and displayed read-only when the Output option is
selected in the Type list. This matches traffic originating from the appliance itself.
The Outgoing Interface is the interface/network port that the appliance routes the network traffic out
8
of.
• Any – [Default] Select this option to match packets transmitted on any interface, but do not match
packets destined for this appliance.
• None – This option is automatically selected and displayed read-only when the Input option is
selected in the Type list. Select this option to only match packets destined for this appliance.
In the Source Address list, select the address that the traffic is arriving from. The options that appear
9
in the list were defined in the Addresses page of the Definitions menu. For more information, see
Addresses
page. Default: Any. To manually enter an address, click New.
In the Destination Address list, select the address to which the traffic is destined, or click New to define
10
the address. Default: Any.
If you are selecting a predefined service, go to
11
Select a service from the Services list. The options that appear in the list were defined in the Services
12
page. For more information, see
To define a service on this page, click New.
a
Select an option from the Protocol list. This matches the protocol of the packet. Available options are:
b
• TCP
• UDP
• IP
• ICMP
Enter one of the following to associate with the selected protocol:
c
• If you selected TCP or UDP for the Protocol:
• service name
• single port number from 1-65535
• a range of port numbers separated by hyphens
• If you selected IP for the Protocol:
• IP protocol number
• If you selected ICMP for the Protocol:
• ICMP type number
[Optional] To log the first packet of the connection to the system log, select the Log checkbox.
13
McAfee UTM Firewall 4.0.4 Administration Guide
Step
12. If you are defining a service, go to
Creating a service
group.
Step
13.
163
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Related Manuals for McAfee SG310
Related Products for McAfee SG310
- McAfee SG720
- McAfee SAV85E - Active VirusScan - PC
- MCAFEE AGENT 4.0 PATCH 2 - FOR WINDOWS S 10-03-2009
- MCAFEE EPOLICY ORCHESTRATOR 4.0 PATCH 5 - S 12-05-2009
- MCAFEE VIRUSSCAN ENTERPRISE 8.7I PATCH 1 - S 24-04-2009
- MCAFEE VIRUSSCAN ENTERPRISE 8.7I PATCH 2 - S 31-08-2009
- MCAFEE VIRUSSCAN ENTERPRISE 8.7I PATCH 3 - S 09-02-2009
- McAfee SMEFCE-AI-DA - Email Security Service Inbound