Specifications

ManualsBrandsWaters Network Systems ManualsComputer equipmentProSwitch-Quad Series

171

172

173

174

175

176

177

178

179

180

Firewall Protection

177

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

• QoS profiles and priorities. A Quality of Service (QoS) profile defines the relative

priority of an IP packet for traffic that matches the firewall rule. For information about

creating QoS profiles for IPv4 firewall rules, see Create Quality of Service Profiles for

IPv4 Firewall Rules on page 184. For information about predefined QoS priorities that are

available for IPv6 firewall rules, see Quality of Service Priorities for IPv6 Firewall Rules on

page 186.

Note: A schedule narrows down the period during which a firewall rule is

applied. For information about specifying schedules, see Set a

Schedule to Block or Allow Specific Traffic on page 189.

Add Customized Services

Services are functions performed by server computers at the request of client computers.

You can configure up to 124 custom services.

For example, web servers serve web pages, time servers serve time and date information,

and game hosts serve data about other players’ moves. When a computer on the Internet

sends a request for service to a server computer, the requested service is identified by a

service or port number. This number appears as the destination port number in the

transmitted IP packets. For example, a packet that is sent with destination port number 80 is

an HTTP (web server) request.

The service numbers for many common protocols are defined by the Internet Engineering

ask Force (IETF) and published in RFC 1700, Assigned Numbers

. Service numbers for

other applications are typically chosen from the range 1024 to 65535 by the authors of the

application. However, on the VPN firewall you can select service numbers in the range from 1

to 65535.

Although the VPN firewall already holds a list of many service port numbers, you are not

limited to these choices. Use the Services screen to add additional services and applications

to the list for use in defining firewall rules. The Services screen shows a list of services that

you have defined, as shown in the following figure.

o define a new service, you need to determine first which port number or range of numbers

is used by the application. Y

ou can usually determine this information by contacting the

publisher of the application, user groups, or newsgroups. When you have the port number

information, you can enter it on the Services screen.

 To add a customized service:

1. Select Security > Services. The Services screen displays.

The Custom Services table

shows the user-defined services. (The following figure shows some examples.)