Filter
Top Products
81
Accept, so that LAN computers have access to the ADSL/Ethernet routers' Internet
connection.
z The term DMZ (de-militarized zone), in Internet networking terms, refers to computers
that are available for both public and in-network accesses (such as a company's public
Web server). Packets received on a DMZ interface -- whether from a LAN or external
source -- are subject to a set of protections that is in between public and private
interfaces in terms of restrictiveness. The global setting for DMZ-type interfaces may be
set to Deny so that all attempts to access these servers are denied by default; the
administrator may then configure IP Filter rules to allow accesses of certain types.
5.7.5 Bridge Filter
Bridge filter rules can be created to control the forwarding of incoming and outgoing data
between your LAN and the Internet and within your LAN. Bridge filter rules make decisions
based on the structure of the "layer 2" data packets (e.g., Ethernet packets) received on the
device interfaces, unlike IP filter rules, which are based on the structure of "layer 3" (e.g., IP)
packets.
Rule ID: Each rule must be assigned an ID number. Rules are processed from lowest to
highest on each data packet, until a match is found. Rule numbers up to 99 are reserved for
preconfigured system rules. Rule IDs must start at 1000 or above so that they do not interfere