|
|
Firewall Object - Properties |
The Service Settings for each rule specify the handling options of the packets passing through the Firewall Object. These settings are common to this type of traffic for all the networks and hosts assigned within this rule.
Rule Properties - Service Definitions dialog
This specifies whether or not the rule will be processed with one of the Firewall Object’s specialized protocol Service Proxy settings. The protocol options for Proxy Services are:
FTP Service Proxy
HTTP Service Proxy
SMTP Service Proxy
See the specific settings for these Service Proxies in the following sections:
FTP Service Proxy Settings Dialog
HTTP Service Proxy Settings Dialog
SMTP Service Proxy Settings Dialog
Specifies the TCP and/or UDP port number(s) to which this rule applies. Session traffic of the type selected will only be managed by this rule when the service port addressing within the packets matches this setting. Unless otherwise managed through another rule, all unmatched traffic will be rejected. For information on how the Service Port definitions can be added or edited see the Service Port Settings section.
This setting specifies the flow of traffic, Inbound, Outbound or Both directions, as managed by this rule from the perspective of the internal network.
These options specify what action the Firewall Object will take in regards to the sessions conforming to the parameters of this rule.
All packets matching the parameters of this rule will be discarded without further action.
Indicates that connection attempts for this type of traffic will be rejected and an ICMP "Host Unreachable For This Type Of Service" message will be returned to the requester. Any other packets for this type of traffic are dropped silently.
Indicates that this type of traffic is allowed to pass through the Firewall for the specified type of connection. Inbound connections are connections that originate from external networks. Allowed traffic would include responses from the internal host during the session/connection. Outbound connections are connections that originate from internal networks. Allowed traffic would include responses from the external host during the session/connection.
Specifies that the Firewall Object will end permitted connections that have been idle in both directions for the specified number of seconds. The default is no timeout.
Specifies that the Firewall Object will end permitted connections that last longer than the specified number of seconds, even if they are not idle. The default is no maximum.
See Also:
Firewall Object - Active Statistics
