ZyWALL 70 User’s Guide
Chapter 37 Filter Configuration
501
The following figure illustrates the logic flow of an IP filter.
Destination
IP Addr
Enter the destination IP Address of the packet you wish to filter. This field is ignored
if it is 0.0.0.0.
IP Mask
Enter the IP mask to apply to the
Destination: IP Addr
.
Port #
Enter the destination port of the packets that you wish to filter. The range of this field
is 0 to 65535. This field is ignored if it is 0.
Port # Comp
Press [SPACE BAR] and then [ENTER] to select the comparison to apply to the
destination port in the packet against the value given
in Destination: Port #
.
Options are
None
,
Equal
,
Not Equal
,
Less
and
Greater
.
Source
IP Addr
Enter the source IP Address of the packet you wish to filter. This field is ignored if it
is 0.0.0.0.
IP Mask
Enter the IP mask to apply to the
Source: IP Addr
.
Port #
Enter the source port of the packets that you wish to filter. The range of this field is 0
to 65535. This field is ignored if it is 0.
Port # Comp
Press [SPACE BAR] and then [ENTER] to select the comparison to apply to the
source port in the packet against the value given in
Source: Port #
.
Options are
None
,
Equal
,
Not Equal
,
Less
and
Greater
.
TCP Estab
This field is applicable only when the IP Protocol field is 6, TCP. Press [SPACE
BAR] and then [ENTER] to select
Yes
, to have the rule match packets that want to
establish a TCP connection (SYN=1 and ACK=0); if
No
, it is ignored.
More
Press [SPACE BAR] and then [ENTER] to select
Yes
or
No
. If
Yes
, a matching
packet is passed to the next filter rule before an action is taken; if
No
, the packet is
disposed of according to the action fields.
If
More
is
Yes
, then
Action Matched
and
Action Not Matched
will be
N/A
.
Log
Press [SPACE BAR] and then [ENTER] to select a logging option from the following:
None
– No packets will be logged.
Action Matched
- Only packets that match the rule parameters will be logged.
Action Not Matched
- Only packets that do not match the rule parameters will be
logged.
Both
– All packets will be logged.
Action Matched
Press [SPACE BAR] and then [ENTER] to select the action for a matching packet.
Options are
Check Next Rule
,
Forward
and
Drop
.
Action Not
Matched
Press [SPACE BAR] and then [ENTER] to select the action for a packet not
matching the rule.
Options are
Check Next Rule
,
Forward
and
Drop
.
When you have
Menu 21.1.1.1 - TCP/IP Filter Rule
configured, press [ENTER] at the message “Press
ENTER to Confirm” to save your configuration, or press [ESC] to cancel. This data will now be
displayed on
Menu 21.1.1 - Filter Rules Summary
.
Table 193
Menu 21.1.1.1: TCP/IP Filter Rule
FIELD
DESCRIPTION
Summary of Contents for ZyWALL 70
Page 1: ...ZyWALL 70 Internet Security Appliance User s Guide Version 3 64 3 2005 ...
Page 2: ......
Page 38: ...ZyWALL 70 User s Guide 38 List of Figures ...
Page 46: ...ZyWALL 70 User s Guide 46 List of Tables ...
Page 74: ...ZyWALL 70 User s Guide 74 Chapter 2 Introducing the Web Configurator ...
Page 92: ...ZyWALL 70 User s Guide 92 Chapter 3 Wizard Setup ...
Page 102: ...ZyWALL 70 User s Guide 102 Chapter 4 LAN Screens ...
Page 108: ...ZyWALL 70 User s Guide 108 Chapter 5 Bridge Screens ...
Page 130: ...ZyWALL 70 User s Guide 130 Chapter 6 Wireless LAN ...
Page 136: ...ZyWALL 70 User s Guide 136 Chapter 7 WAN Screens Figure 45 WAN General ...
Page 155: ...ZyWALL 70 User s Guide Chapter 7 WAN Screens 155 Figure 55 Dial Backup Setup ...
Page 234: ...ZyWALL 70 User s Guide 234 Chapter 13 Introduction to IPSec ...
Page 275: ...ZyWALL 70 User s Guide Chapter 15 Certificates 275 Figure 125 My Certificate Details ...
Page 294: ...ZyWALL 70 User s Guide 294 Chapter 16 Authentication Server Figure 136 Local User Database ...
Page 314: ...ZyWALL 70 User s Guide 314 Chapter 17 Network Address Translation NAT ...
Page 318: ...ZyWALL 70 User s Guide 318 Chapter 18 Static Route ...
Page 324: ...ZyWALL 70 User s Guide 324 Chapter 19 Policy Route ...
Page 340: ...ZyWALL 70 User s Guide 340 Chapter 20 Bandwidth Management ...
Page 376: ...ZyWALL 70 User s Guide 376 Chapter 22 Remote Management ...
Page 390: ...ZyWALL 70 User s Guide 390 Chapter 24 Logs Screens Figure 194 Log Settings ...
Page 413: ...ZyWALL 70 User s Guide Chapter 25 Maintenance 413 Figure 216 Restart Screen ...
Page 414: ...ZyWALL 70 User s Guide 414 Chapter 25 Maintenance ...
Page 440: ...ZyWALL 70 User s Guide 440 Chapter 28 WAN and Dial Backup Setup ...
Page 456: ...ZyWALL 70 User s Guide 456 Chapter 31 DMZ Setup ...
Page 460: ...ZyWALL 70 User s Guide 460 Chapter 32 Route Setup ...
Page 470: ...ZyWALL 70 User s Guide 470 Chapter 33 Remote Node Setup ...
Page 522: ...ZyWALL 70 User s Guide 522 Chapter 39 System Information Diagnosis ...
Page 538: ...ZyWALL 70 User s Guide 538 Chapter 40 Firmware and Configuration File Maintenance ...
Page 550: ...ZyWALL 70 User s Guide 550 Chapter 42 Remote Management ...
Page 558: ...ZyWALL 70 User s Guide 558 Chapter 43 IP Policy Routing ...
Page 573: ...ZyWALL 70 User s Guide Chapter 45 Troubleshooting 573 Figure 360 Java Sun ...
Page 574: ...ZyWALL 70 User s Guide 574 Chapter 45 Troubleshooting ...
Page 582: ...ZyWALL 70 User s Guide 582 Appendix B Removing and Installing a Fuse ...
Page 602: ...ZyWALL 70 User s Guide 602 Appendix D IP Subnetting ...
Page 608: ...ZyWALL 70 User s Guide 608 Appendix F PPTP ...
Page 626: ...ZyWALL 70 User s Guide 626 Appendix H Triangle Route ...
Page 656: ...ZyWALL 70 User s Guide 656 Appendix K Importing Certificates ...
Page 658: ...ZyWALL 70 User s Guide 658 Appendix L Command Interpreter ...
Page 664: ...ZyWALL 70 User s Guide 664 Appendix M Firewall Commands ...
Page 668: ...ZyWALL 70 User s Guide 668 Appendix N NetBIOS Filter Commands ...
Page 674: ...ZyWALL 70 User s Guide 674 Appendix P Brute Force Password Guessing Protection ...
Page 696: ...ZyWALL 70 User s Guide 696 Appendix R Log Descriptions ...