ZyXEL p-660h-61 Guida Utente

Prestige 660H Series User’s Guide 

Filter Configuration 

        30-5 

m Action 

Matched. 

“F” means to forward the packet immediately and skip checking the remaining rules. 
“D” means to drop the packet. 
“N“ means to check the next rule. 

n 

Action Not Matched. 
“F” means to forward the packet immediately and skip checking the remaining rules. 
“D” means to drop the packet. 
“N” means to check the next rule. 

The protocol dependent filter rules abbreviation are listed as follows: 

IP  

Pr Protocol 

SA Source 

Address 

SP 

Source Port Number 

DA Destination 

Address 

DP 

Destination Port Number 

GEN  

Off Offset 

Len Length 

To configure a filter rule, type its number in Menu 21.1.x – Filter Rules Summary and press 
[ENTER] to open menu 21.1.x.1 for the rule. 

There are two types of filter rules: TCP/IP and Generic. Depending on the type of rule, the 
parameters for each type will be different. Use [SPACE BAR] to select the type of rule that you want 
to create in the Filter Type field and press [ENTER] to open the respective menu. 

To speed up filtering, all rules in a filter set must be of the same class, for instance, protocol filters or 
generic filters. The class of a filter set is determined by the first rule that you create. When applying 
the filter sets to a port, separate menu fields are provided for protocol and device filter sets. If you 
include a protocol filter set in a device filters field or vice versa, the Prestige will warn you and will 
not allow you to save. 

This section shows you how to configure a TCP/IP filter rule. TCP/IP rules allow you to base the rule 
on the fields in the IP and the upper layer protocol, for example, UDP and TCP headers.