Glossary
Contents
Central Management System
Page 27 of 45
If your ISP provides you with multiple public IP addresses you may specify a public IP address that the
inbound rule refers to. This is useful if you want to have multiple rules to the same port on different
internal PCs.
If your ISP doesn't provide you with multiple public IP addresses you will not see the
Target IP address drop-down. This is likely to be the case for most ISPs.
5.13.2 Add a Basic Rule
n
Select Inbound / Outbound / Intranet Basic
/
VPN– the area in which you're creating the rule.
n
Enter your page-specific setup details.
Inbound requires your Internal IP Address
Outbound requires your Source networked appliance (PC, CPE, EFTPOS terminal, printer, etc): IP
Address or network, and a Destination address (or leave this blank for 'All Networks').
Intranet requires your Source Network and your Destination: IP Address or network.
n
Select the Service Type. The
F
will present a Search window to find types by description, name or
port. The Service defines exactly which internet protocol is permitted to communicate through the rule.
A broad selection of the most frequently found protocols is available from the drop-down menu under
Service Type. Where an additional protocol is required, simply email a request for this using the address
shown and it will be scheduled for addition.
n
Intranet Only: Set your Action to Allow or Deny.
n
Enter a Comment to describe the rule.
Add when finished.
Refresh to update your Firewall rules.
5.13.3 Advanced
The Advanced sections allows you to configure more complex rules for Inbound, Outbound or Intranet
traffic.
Advanced rules cover the Source (or External) IP address, the Destination (or Internal) IP address, the
External Service and the Internal Service. These values specify the networ device that is initiating
communications, the internet protocol that the device may use in its communications, as well as the
permissions of the device on the office network.
5.13.4 Add an Advanced Rule
n
Enter the IP Addresses, Masks and their corresponding Services in the lower section of the page.
Add when finished.
The option of declaring IP addresses as "any" permits any Internet-based host to open
communications with the targeted local device. Just leave the Source IP address/Mask
fields empty.
You may specify a public IP address that the rule refers to. This is useful if you want to have multiple rules
to the same port on different internal devices.
5.13.5 Trace Logging
Trace logging is not recommended, but you may log debugging information when a connection
through an inbound rule is attempted, if absolutely required. The Trace Logging checkbox, when
checked, enables the recording of debugging information, which is then made available to your Reseller
in the Syslogs Report section of the website. The Trace Logging option is also available in the Outbound
Advanced and Intranet Advanced sections.