1 configuring a filter rule – ZyXEL Communications ZyXEL ZyWALL 5 User Manual

ZyWALL 5 User’s Guide

Chapter 35 Filter Configuration

469

The protocol dependent filter rules abbreviation are listed as follows:

Refer to the next section for information on configuring the filter rules.

35.2.1 Configuring a Filter Rule

To configure a filter rule, type its number in Menu 21.1.1 - Filter Rules Summary and press
[ENTER] to open menu 21.1.1.1 for the rule.

Table 180 Abbreviations Used in the Filter Rules Summary Menu

FIELD

DESCRIPTION

A

Active: “Y” means the rule is active. “N” means the rule is inactive.

Type

The type of filter rule: “GEN” for Generic, “IP” for TCP/IP.

Filter Rules

These parameters are displayed here.

M

More.

“Y” means there are more rules to check which form a rule chain with the present rule.

An action cannot be taken until the rule chain is complete.
“N” means there are no more rules to check. You can specify an action to be taken i.e.,

forward the packet, drop the packet or check the next rule. For the latter, the next rule is

independent of the rule just checked.

m

Action Matched.

“F” means to forward the packet immediately and skip checking the remaining rules.

“D” means to drop the packet.

“N“ means to check the next rule.

n

Action Not Matched.

“F” means to forward the packet immediately and skip checking the remaining rules.

“D” means to drop the packet.

“N” means to check the next rule.

Table 181 Rule Abbreviations Used

ABBREVIATION

DESCRIPTION

IP

Pr Protocol

SA Source Address

SP Source Port number

DA Destination Address

DP Destination Port number

GEN

Off Offset

Len Length