The menu Firewall->Policies->Options consists of the following fields:
Fields in the Global Firewall Options menu.
Field Description
IPv4 Firewall Status Enable or disable the IPv4 firewall function.
The function is enabled with "1
The function is enabled by default.
Logged Actions Select the firewall syslog level.
The messages are output together with messages from other
subsystems.
Possible values:
• 311 (default value): All firewall activities are displayed.
• 5(: Only reject and deny events are shown, see "Action".
• 3%%+: Only accept events are shown.
• ): Syslog messages are not generated.
IPv4 Full Filtering
With TCP sessions, the SIF first verifies if a session has been
established completely and correctly. The filtering itself is car-
ried out in a second step. The default setting IPv4 Full Filtering
has been designed to meet this "standard" case.
If - in a two-way communication - one traffic direction is sent
through the router, but the counter direction takes a different
route, the data traffic of this connection will be blocked because
the session is interpreted as "incomplete" by the SIF. This will
happen even if there is a rule that allows the same kind data
traffic in a complete session.
In order to allow the data traffic of "incomplete" sessions you
have to disable IPv4 Full Filtering.
Fields in the Session Timer menu.
Field Description
UDP Inactivity Enter the inactivity time after which a UDP session is to be re-
garded as expired (in seconds).
Possible values are & to .
bintec elmeg GmbH
15 Firewall
bintec RS Series 423
To Next Page
Loading...
