05.08.2013 Views

Intrusion Defense Firewall 1.2 User's Guide - Trend Micro? Online ...

Intrusion Defense Firewall 1.2 User's Guide - Trend Micro? Online ...

Intrusion Defense Firewall 1.2 User's Guide - Trend Micro? Online ...

SHOW MORE
SHOW LESS

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

Priority: If you have selected "force allow", "deny", or "log only" as your rule action, you can set<br />

a priority here of 0 (low) to 4(highest). Setting a priority allows you to combine the actions of<br />

rules to achieve a cascading rule effect. Log only rules can only have a priority of 4, and Allow<br />

rules can only have a priority of 0.<br />

The priority determines the order in which rules are applied. High priority rules get applied before<br />

low priority rules. For example, a port 80 incoming deny rule with a priority of 3 will drop a packet<br />

before a port 80 incoming force allow rule with a priority of 2 ever gets applied to it.<br />

Packet Direction: Select whether this rule will be applied to incoming or outgoing traffic.<br />

Frame Type: Select or specify the frame type your rule will be looking for. Use the checkbox to<br />

specify whether you will be filtering for this frame type or anything but this frame type.<br />

For a list of frame types, see the Internet Assigned Numbers Authority (IANA) Web site.<br />

Protocol: Select or specify the protocol your rule will be looking for. Use the checkbox to specify<br />

whether you will be filtering for this protocol or anything but this protocol.<br />

Note that you can choose from the drop down list of predefined common protocols, or you can<br />

select "Other" and enter the protocol code yourself (a three digit decimal value from 0 to 255).<br />

Packet Source<br />

The following options apply to the packet header's source information:<br />

IP: Specify an IP address, a masked IP address, an IP range, or select an IP list from one you<br />

defined on the IP Lists screen.<br />

MAC: Specify a MAC address or select a MAC list from one you defined in the MAC Lists screen.<br />

Port: You can specify a comma separated list of ports or a dash separated port range in the<br />

port(s) option as well as just a single port (e.g., 80, 443, 1-100) or select a Port list from one you<br />

defined in the Port Lists screen.<br />

Packet Destination<br />

The following options apply to the packet header's destination information:<br />

IP: Specify an IP address, a masked IP address, an IP range, or select an IP list from one you<br />

defined in the IP Lists screen.<br />

MAC: Specify a MAC address or select a MAC list from one you defined in the MAC Lists screen.<br />

Port: You can specify a comma separated list of ports or a dash separated port range in the<br />

port(s) option as well as just a single port (e.g., 80, 443, 1-100) or select a Port list from one you<br />

defined in the Port Lists screen.<br />

Specific Flags<br />

If you have selected TCP, ICMP, or TCP+UDP as your protocol in the General Information section above,<br />

you can direct your <strong>Firewall</strong> Rule to watch for specific flags.<br />

© Copyright 2010 <strong>Trend</strong> <strong>Micro</strong> Inc. www.trendmicro.com<br />

All rights reserved. - 32 -

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!