Filter rules – Siemens 4100 Series User Manual

Page 49

Router User’s Guide

Monitoring Network Health

Filter Rules

If the firewall security level is set to Custom, this features allows you to specify a unique set of firewall
rules for handling inbound and outbound traffic customized to the user’s specific requirements. In this
mode of operation the firewall provides an extensive amount of configurability. As such, only advanced
users should employ this feature.

Rules can be filter-based on any of the following:

• Source and destination router interfaces
• IP

protocols

• Direction of traffic flow
• Source and destination network/host IP address
• Protocol-specific attributes such as ICMP message types
• Source and destination port ranges (for protocols that support them), and support for port comparison

operators such as less than, greater than, and equal to.

Rules can specifically allow or deny packets to flow through the router. Default actions taken when no
specific rule applies can also be configured.

To define inbound and outbound IP filter rules:

1. Select Setup>Firewall>Filter Rules from the left navigation pane of the Web interface. This displays

the “Firewall IP Filter Configuration Wizard” window.

2. Do one of the following:

• To add new IP filter rules as you define them, click Add New IP Filter Rule. This displays the

“

Basic Rule Definition

” window.

• To clone IP filter rules already defined, click Clone IP Filter Level. This displays the “

Clone Rule

Definition

” window. Once cloned, you can modify the existing rules.

This manual is related to the following products:

4200 Series