Gigabit Content Security Router User’s Manual
9.2 Access Rule
Users may turn on/off the setting to permit or forbid any packet to access internet. Users may select to set
different network access rules: from internal to external or from external to internal. Users may set different
packets for IP address and communication port numbers to filter Internet access rules.
Network access rule follows IP address, destination IP address, and IP communications protocol status to
manage the network packet traffic and make sure whether their access is allowed by the firewall.
9.2.1 Default Rule
The device has a user-friendly network access regulatory tool. Users may define network access rules. They
can select to enable/ disable the network so as to protect all internet access. The following describes the
internet access rules:
z
All traffic from the LAN to the WAN is allowed - by default.
z
All traffic from the WAN to the LAN is denied - by default.
z
All traffic from the LAN to the DMZ is allowed - by default.
z
All traffic from the DMZ to the LAN is denied - by default.
z
All traffic from the WAN to the DMZ is allowed - by default.
z
All traffic from the DMZ to the WAN is allowed - by default.
Users may define access rules and do more than the default rules. However, the following four extra service
items are always on and are not affected by other user-defined settings.
* HTTP Service (from LAN to Device) is on by default (for management)
* DHCP Service (from LAN to Device) is set to on by default (for the automatic IP retrieval)
* DNS Service (from LAN to Device) is on by default (for DNS service analysis)
* Ping Service (from LAN to Device) is on by default (for connection and test)
In addition to the default rules, all the network access rules will be displayed as illustrated above. Users may
follow or self-define the priority of each network access rule. The device will follow the rule priorities one by
one, so please make sure the priority for all the rules can suit the setting rules.
- 89 -