Справочник Пользователя для ASUS RX3141
Chapter 9. Configuring Firewall/NAT Settings
RX3141 User’s Manual
52
9.3 ACL Rule Configuration Parameters
9.3.1 ACL
Rule
Configuration Parameters
Table 9.3 describes the configuration parameters firewall inbound, outbound and self-access ACL rules.
Table 9.3. ACL Rule Configuration Parameters
Field
Description
ID
Add New
Click on this option to add a new ACL rule.
Rule Number
Select a rule from the drop-down list, to modify its settings.
Mave
This option allows you to set a priority for this rule. The RX3141 Firewall acts on packets based on
the priority of the rules. Set a priority by specifying a number for its position in the list of rules:
the priority of the rules. Set a priority by specifying a number for its position in the list of rules:
1 (First)
This number marks the highest priority.
Other numbers
Select other numbers to indicate the priority you wish to assign to the rule.
Action
Allow
Select this button to configure the rule as an allow rule.
This rule when bound to the Firewall will allow matching packets to pass
through.
This rule when bound to the Firewall will allow matching packets to pass
through.
Deny
Select this button to configure the rule as a deny rule.
This rule when bound to the Firewall will not allow matching packets to
pass through.
This rule when bound to the Firewall will not allow matching packets to
pass through.
Route to (only for outbound ACL)
This field is used for policy routing needed for PPPoE unnumbered or PPPoE multi-session.
Available options include AUTO, ppp0 (unnumbered), ppp1 (1
Available options include AUTO, ppp0 (unnumbered), ppp1 (1
st
PPPoE session), ppp2 (2
nd
PPPoE
session). These options are selectable from the drop-down list. If AUTO is selected, the router will
route the packets based on the information in the routing table.
route the packets based on the information in the routing table.
Log
Select or deselect the check box to enable or disable logging for this ACL rule.
Protocol
This option allows you to select protocol type from a drop-down list. Available settings are All, TCP,
UDP, ICMP, IGMP, AH and ESP.
UDP, ICMP, IGMP, AH and ESP.
Source IP
This option allows you to set the source network to which this rule should apply. Use the drop-down
list to select one of the following options:
list to select one of the following options:
Any
This option allows you to apply this rule to all the computers in the source
network, such as those on the Internet for the inbound traffic or all the
computers in the local network for outbound traffic.
network, such as those on the Internet for the inbound traffic or all the
computers in the local network for outbound traffic.
IP Address
This option allows you to specify an IP address on which this rule will be
applied.
applied.
IP Address
Specify the appropriate network address