Example filter – ZyXEL Communications Broadband Security Gateway P-312 User Manual

P312 Broadband Security Gateway

Filters

7-13

The following table describes the fields in the Generic Filter Rule Menu.

Table 7-5

Generic Filter Rule Menu Fields

Field

Description

Option

Filter #

This is the filter set, filter rule co-ordinates, i.e., 2,3 refers to the second
filter set and the third rule of that set.

Filter Type

Use the [SPACE BAR] to toggle between both types of rules. Parameters
displayed below each type will be different.

Generic Filter
Rule/ TCP/IP
Filter Rule

Active

Select Yes to turn on the filter rule.

Yes/No

Offset

Enter the starting byte of the data portion in the packet that you wish to
compare. The range for this field is from 0 to 255.

Default = 0

Length

Enter the byte count of the data portion in the packet that you wish to
compare. The range for this field is 0 to 8.

Default = 0

Mask

Enter the mask (in Hexadecimal) to apply to the data portion before
comparison.

Value

Enter the value (in Hexadecimal) to compare with the data portion.

More

If yes, a matching packet is passed to the next filter rule before an action is
taken; else the packet is disposed of according to the action fields.

If More is Yes, then Action Matched and Action Not Matched will be No.

Yes / No

Log

Select the logging option from the following:

!

None – No packets will be logged.

!

Action Matched - Only packets that match the rule parameters will
be logged.

!

Action Not Matched - Only packets that do not match the rule
parameters will be logged.

!

Both – All packets will be logged.

None

Action

Matched

Action Not

Matched

Both

Action
Matched

Select the action for a matching packet.

Check Next

Rule

Forward

Drop

Action Not
Matched

Select the action for a packet not matching the rule.

Check Next

Rule

Forward