Operation Manual

SFX SERIES USER’S GUIDE

Rev 2.2 61

The following fields can be edited on the Edit Default Filtering Rule page:

Edit Field Description

Rule Status This drop down box selects the default action that will be taken on an incoming IP packet if

there was no rule match in the Filtering Table. The following selections are available:

Accept – accept packet and continue processing and output.

Drop – throw away the packet.

Figure 2- 33 Edit Filtering Table Page

The following fields can be edited on the Edit Filtering Table page:

Edit Field Description

! Clicking on the “not” (!) check box negates the logic for the immediate edit field to the right of the

check box. For example, !192.168.1.86 for the Source IP would mean all IP packets whose

source IP address is not 192.168.1.86.

Source IP Enter a source IP Address in dotted decimal notation, here if you wish to filter IP packets on

their source IP address.

Port

Enter a TCP or UDP Port number in any of the two port fields ((Source IP, Destination IP), if you

wish. If a port is specified, you must select a specific protocol (TCP or UDP).

Destination IP Enter a Destination IP Address in dotted decimal notation, here if you wish to filter IP packets on

their destination IP address.

Protocol Enter the IP packet protocol. Options are All Protocols (default), UDP/IP Protocol, or TCP/IP

Protocol. If port numbers are specified in a rule, you must select UDP or TCP.

Action Select an action to be taken for the filtering operation. The three selections are:

Accept – accept packet and continue processing and output.

Reject – throw away the packet, but send an ICMP Destination Unreachable message back on

the originating host network interface. This is useful for eth0 and eth1 originating packets. If the

NOTE

The

Source IP/Port

and Destination

IP/Port fields

are optional,

and “Any” is the

implied default

value.