Manualshelf

User Guide

ManualsBrandsSonicWALL ManualsOtherINTERNET SECURITY APPLIANCE
81828384858687888990
Page 86 SonicWALL Internet Security Appliance User’s Guide
Current Network Access Rules List
All Network Access Rules are listed in the Current Network Access Rules table. The
rules are listed from most to least specific. The rules at the top of Current Network
Access Rules list take precedence over rules at the bottom of the list.
Edit a Rule
To edit a rule, click the Note Pad icon on the right side of the browser window. A new
Web browser window appears, displaying the current configuration of the rule. Make the
desired changes and click Update to update the rule. The modified rule is displayed in the
list of Current Network Access Rules.
Delete a Rule
To delete a rule, click the Trash Can icon at the right side of the browser window. A dialog
box appears with the message “Do you want to remove this rule?”. Click OK. Once the
SonicWALL has been updated, a message confirming the update is displayed at the bottom
of the browser window.
Enable/Disable a Rule
To disable a rule without permanently removing it, clear the Enable check box to the right
of the rule. To enable a disabled rule, select the Enable check box. The configuration is
updated automatically, and a message confirming the update is displayed at the bottom of
the browser window.
Restore the Default Network Access Rules
If the SonicWALL Network Access Rules have been modified or deleted, you can restore
the Default Rules. The Default Rules prevent malicious intrusions and attacks, block all
inbound IP traffic and allow all outbound IP traffic. Click Restore Rules to Defaults to
reset the Network Access Rules. Once the SonicWALL has been updated, a message
confirming the update is displayed at the bottom of the browser window.
Understanding the Access Rule Hierarchy
The rule hierarchy has two basic concepts:
1. Specific rules override general rules.
• An individual service is more specific than the Default service.
• A single Ethernet link, such as LAN or WAN, is more specific than * (all).
• A single IP address is more specific than an IP address range.
2. Equally specific Deny rules override Allow rules.
Rules are displayed in the Current Network Access Rules list from the most specific to
the least specific, and rules at the top override rules listed below. For example, consider
the section of the Rules window shown below.
integrated_manual.book Page 86 Friday, October 12, 2001 2:56 PM