Specifications
17
4-3 Firewall Rules
This allows users to configur
e the Stateful Packet Inspection Firewall to protect the user from external hackers. The firewall is enabled as default to provide the user with
the maximum pr
otection. Most users should not have to make any changes to the firewall
Figure 17. Firewall Rules
The default settings of the firewall are as follows:
Incoming Data Always Block This stops any unauthorised access to the router
Outgoing Data Always Allows This provides unrestricted access for users.
To change the Firewall, new rules can be created for both incoming and outgoing data flows. Use the
Add, Edit, Move and Delete buttons to add new rules. Rules with a
higher number are processed before rules with a lower number. The default rule is always the last to be processed.
•
Service Select from the drop down list the type of application to be covered by this rule. If a service is not listed, it can be created using Firewall Services in
section 4-4.
•
Action Choose from the drop down menu of
BLOCK always
BLOCK by schedule
- this allows the firewall to be enabled/disabled at particular times of the day.
ALLOW always
ALLOW by schedule
- this allows the firewall to be enabled/disabled at particular times of the day.
•
LAN Users Select which users on the LAN or wireless LAN will be effected by these rules.
•
WAN Users Select which internet locations are effected by these rules.
•
Log If selected, this allows the user to monitor the effectiveness of the firewall rules. Options are
Always - this logs all traffic, whether it meets the requirement of the rule or not. This is useful when debugging rules.
Never - select this if you do not want to monitor traffic.
Match - select this if you want to log instances when the rule matches.
Not Match - select this if you want to log instances when the rule does NOT match.
•
Comment Add a user defined comment to a firewall rule so that you can remember why you set up the rule.
ENGLISH