ZyXEL Communications ZYWALL10 User Manual

ZyWALL 10 Internet Security Gateway

16-6

Creating Custom Rules

Table 16-1 Firewall Rules Summary — First Screen

FIELD

DESCRIPTION

OPTIONS

General

Name

This is the name of the firewall rule set. Type a name to
distinguish the LAN-to-WAN filter set from the WAN-to-
LAN filter set.

Name

The default action for

packets not matching

following rules.

Should packets that do not match the following rules be
blocked or forwarded? Make your choice from the drop
down list box. Note that “block” means the firewall silently
discards the packet.

Block

Forward

Default Permit Log

Check this box to log all matched rules in the ACL default
set.

Firewall Rule Summary

The following fields summarize the rules you have
created. Note that these fields are read only. Click the tab
at the top of the box to order the rules according to that
tab.

No

This is your firewall rule number. The ordering of your
rules is important as rules are applied in turn. The Move
field below allows you to reorder your rules.

Source IP

This is the source address of the packet.

Destination IP

This is the destination address of the packet.

Service

This is the service to which the rule applies. See Table
16-2 for more information.

Action

This is the specified action for that rule. Note that Block
means the firewall silently discards the packet.

Block

Forward

Log

This field shows you if a log is created for packets that
match the rule, don’t match the rule, both or no log is
created.

Match

Not Match

Both

None

Move Rule

You may reorder your rules using this function. Select by
clicking on the rule you want to move. The ordering of
your rules is important as rules are applied in turn.

To Rule Number

In this box, type the number you want to move the rule to.

Move

Click this command button to move the rule.