Firewall
135
The first matching rule determines the action for the network traffic, so the order of the
rules is important. You can use the Move Up and Move Down icons to change the order.
The rules are evaluated top to bottom as displayed on screen.
Adding or modifying a rule is shown in the following figure:
The Action specifies what to do if the rule matches.
• Accept means to allow the traffic.
• Drop means to disallow the traffic.
• Reject means to disallow the traffic, but also send an ICMP port unreachable
message to the source IP address.
• None means to perform no action for this rule. This is useful for a rule that logs
packets, but performs no other action.
The Incoming Interface is the interface/network port that the CyberGuard SG appliance
received the network traffic on. Set this to None to match traffic destined for the
CyberGuard SG appliance itself.
The Outgoing Interface is the interface/network port that the CyberGuard SG appliance
routes the network traffic out. Set this to None to match traffic originating from the
CyberGuard SG appliance itself.
To Next Page
Loading...
Need help?
General
