D-Link DSR-Series User Manual 183
Section 8 - Security
3. Complete the īelds from the table below and click Save.
Field Description
From Zone
IPv4:
Select the source of originating traīc: Secure (LAN), Secure (VLAN), INSECURE ( WAN1/WAN2/WAN3
(Mobile Internet)) or DMZ.
IPv6:
Select the source of originating traīc: Secure (LAN), INSECURE (Dedicated WAN/Optional WAN).
Available VLANs Select VLAN name from the list of available VLANs if To Zone is selected as SECURE (VLAN).
To Zone
IPv4:
Select the destination of the traīc that is controlled by this īrewall rule: INSECURE (Dedicated WAN/
Conīgurable WAN/WAN3 (Mobile Internet)), Secure (VLAN) or DMZ.
IPv6:
Select the destination of the traīc that is controlled by this īrewall rule: INSECURE (Dedicated WAN/
Optional WAN).
Service Select a service from the drop-down menu. ANY means all traīc is aīected by this rule.
Action
Select an action from the drop-down menu:
ā¢ Always Block: It blocks the selected service at all times.
ā¢ Always Allow: It allows data matching the selected service to pass through at all times.
ā¢ Block by schedule: It works in conjunction with a predeīned schedule. The selected service will
be blocked during the schedule interval and will be allowed to pass through at other times.
ā¢ Allow by schedule: It works in conjunction with a predeīned schedule. The selected service
will be allowed to pass through during the schedule interval and will be blocked at other times.
Select Schedule Choose a predeīned schedule from the drop-down list.
Source Hosts
Select the hosts that originate the traīc for this īrewall rule. If you select Single Address or Address
Range, you will need to enter the IP address or IP range.
Destination Hosts
Select the host that will receive the traīc for this īrewall rule. If you select Single Address or Address
Range, you will need to enter the IP address or IP range.
Log
Specify whether or not the packets for this rule should be logged. To log details for all packets that
match this rule, select Always. Select Never to disable logging.
QoS Priority (IPv4 only)
Assign a priority to IP packets of this service. The priorities are deīned by āType of Service (TOS) in
the Internet Protocol Suiteā standards, RFC 1349. The gateway marks the Type Of Service (TOS) īeld
as deīned below:
ā¢ Normal-Service: No special priority is given to the traīc. The IP packets for services with this
priority are marked with a TOS value of 0.
ā¢ Minimize-Cost: Choose this option when data must be transferred over a link that has a lower
ācostā. The IP packets for services with this priority are marked with a TOS value of 2.
ā¢ Maximize-Reliability: Choose this option when data needs to travel to the destination over a
reliable link and with little or no retransmission. The IP packets for services with this priority are
marked with a TOS value of 4.
ā¢ Maximize-Throughput: Choose this option when the volume of data transferred during an in-
terval is important even if the latency over the link is high. The IP packets for services with this
priority are marked with a TOS value of 8.
ā¢ Minimize-Delay: Choose this option when the time required (latency) for the packet to reach
the destination must be low. The IP packets for services with this priority are marked with a TOS
value of 16.
2. Right-click an entry and select either Edit or Delete. To add a new group, click Add New IPv4/IPv6
Firewall Rule.
To Next Page
Loading...
Need help?
General
