Zyxel ZyWALL-2 Router Manual PDF (Setup & Configuration Guide)

Page 21 / 43 Scroll up to view Page 16 - 20

ZyWALL 2

21

LABEL

Move

Select a rule’s Index option button and type a number for where you want to put that rule.

Click

Move

to move the rule to the number that you typed. The ordering of your rules is

important as they are applied in order of their numbering.

Edit

Click

Edit

to create or edit a rule.

Delete

Click

Delete

to delete an existing firewall rule. Note that subsequent firewall rules move

up by one when you take this action.

5.5 Procedure for Configuring Firewall Rules

Follow these directions to create a new rule.

Step 1.

In the

Summary

screen, click the

Insert

button and enter the Rule Number before which

you want the new rule to be located.

Step 2.

In the

Available Services

text box, select the services you want. Configure customized

ports for services not predefined by the ZyWALL by clicking the

Add

or

Edit

buttons

under

Custom Port

.

For a comprehensive list of port numbers and services, visit the

IANA (Internet Assigned Number Authority) web site.

Step 3.

Configure the

Source Address

and

Destination Address

for the rule.

Page 22 / 43

ZyWALL 2

22

The following table describes the fields in this screen.

LABEL

DESCRIPTION

Active

Check the

Active

check box to have the ZyWALL use this rule. Leave it unchecked if

you do not want the ZyWALL to use the rule after you apply it

Packet Direction

Use the drop-down list box to select the direction of packet travel to which you want

to apply this firewall rule.

Page 23 / 43

ZyWALL 2

23

LABEL

DESCRIPTION

Source Address

Click

SrcAdd

to add a new address,

SrcEdit

to edit an existing one or

SrcDelete

to

delete one.

Destination

Address

Click

DestAdd

to add a new address,

DestEdit

to edit an existing one or

DestDelete

to delete one.

Available/

Selected

Services

Highlight a service from the

Available Services

box on the left, then click

>>

to add it

to the

Selected Services

box on the right. To remove a service, highlight it in the

Selected Services

box on the right, then click

<<

.

Custom Port

Add

Click this button to bring up the screen that you use to configure a new custom

service that is not in the predefined list of services.

Edit

Select a custom service (denoted by an “*”) from the

Available Services

list and

click this button to edit the service.

Delete

Select a custom service (denoted by an “*”) from the

Available Services

list and

click this button to remove the service.

Block Services according to this schedule :

Day to Block

Select everyday or the day(s) of the week to activate blocking.

Time of Day to

Block (24-Hour

Format)

Select

All Day

or enter the start and end times in the hour-minute format to activate

blocking.

Action for

Matched Packets

Use the drop down list box to select whether to discard (

Block

) or allow the passage

of (

Forward

) packets that match this rule.

Log

This field determines if a log is created for packets that match the rule (

Match

), don't

match the rule (

Not Match

), both (

Both

) or no log is created (

None

). Go to the

Log

Settings

page and select the

Access Control

logs category to have the ZyWALL

record these logs.

Alert

Check the

Alert

check box to determine that this rule generates an alert when the

rule is matched.

5.6 Configuring Source and Destination Addresses

To add a new source or destination address, click

SrcAdd

or

DestAdd

from the previous screen. To

edit an existing source or destination address, select it from the box and click

SrcEdit

or

DestEdit

from the previous screen

.

Either action displays the following screen.

Page 24 / 43

ZyWALL 2

24

The following table describes the fields in this screen.

LABEL

Address Type

Do you want your rule to apply to packets with a particular (single) IP address, a range of

IP addresses (e.g., 192.168.1.10 to 192.169.1.50), a subnet or any IP address? Select an

option from the drop down list box

Start IP Address

Enter the single IP address or the starting IP address in a range here.

End IP Address

Enter the ending IP address in a range here.

Subnet Mask

Enter the subnet mask here, if applicable.

5.7 Content Filtering Overview

Content filtering allows you to block certain web features, such as Cookies, and/or restrict specific

websites. With content filtering, you can do the following:

5.7.1

Restrict Web Features

The ZyWALL can block web features such as ActiveX controls, Java applets, cookies and

disable web proxies.

5.7.2

Create a Filter List

You can select categories, such as pornography or racial intolerance, to block from a pre-

defined list.

Page 25 / 43

ZyWALL 2

25

5.7.3

Customize Web Site Access

You can specify URLs to which the ZyWALL blocks access. You can alternatively block access to

all URLs except ones that you specify. You can also have the ZyWALL block access to URLs that

contain key words that you specify.

5.7.4

General Content Filter Configuration

Click

CONTENT FILTER

to open the

CONTENT FILTERING

screen. The

General

tab

displays as shown. Use this screen to enable content filtering, configure a schedule, and create a

denial message. You can also choose specific computers to be included in or excluded from the

content filtering configuration.

Rate

Popular Zyxel Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share