ZyXEL Communications Wireless Gateway Series User Manual

ZyAIR Wireless Gateway Series User’s Guide 

12-4  

Firewall 

Screens 

This section describes examples for firewall rules for connections going from LAN to WAN and from WAN 
to LAN.  

LAN to LAN/ZyAIR and WAN to WAN/ZyAIR rules apply to packets coming in on the associated interface 
(LAN or WAN respectively). LAN to LAN/ZyAIR means policies for LAN-to-ZyAIR (the policies for 
managing the ZyAIR through the LAN interface) and policies for LAN-to-LAN (the policies that control 
routing between two subnets on the LAN). 

LAN-to-WAN rules are local network to Internet firewall rules. The default is to forward all traffic from 
your local network to the Internet.  

How can you block certain LAN to WAN traffic?  

You may choose to block certain LAN-to-WAN traffic in the Services screen (click the Services tab). All 
services displayed in the Blocked Services list box are LAN-to-WAN firewall rules that block those services 
originating from the LAN.  

Blocked LAN-to-WAN packets are considered alerts. Alerts are “higher priority logs” that include system 
errors, attacks and attempted access to blocked web sites. Alerts appear in red in the View Log screen. You 
may choose to have alerts e-mailed immediately in the Log Settings screen. 

LAN-to-LAN/ZyAIR means the LAN to the ZyAIR LAN interface. This is always allowed, as this is how 
you manage the ZyAIR from your local computer.