LAN/Subnet Configuration 3-9
1. To enable the advanced access settings, check the Override Subnet Access and NAT settings box. The rest of the
screen will become active. When this box is not checked, the settings in both the Subnet Access screen (under Firewall)
and the NAT screen (under WAN) are disabled; the switch will use the settings found on this screen instead.
2. If you want the application to translate the subnet access settings into Firewall Rules (displayed in the lower area), click
the Import rules from Subnet Access button. This button removes the need for the administrator to reenter the
information defined on the Subnet Access screen.
Next, add, delete, or modify rules in the Firewall Rules list, as necessary.
3. Select Inbound or Outbound from the pull-down menu at the top of the Firewall Rules area, to display either the
inbound (data entering the LAN) or outbound (data exiting the LAN) rules.
4. To modify a rule, select the rule from the Firewall Rules list, then edit the fields by clicking in the field to modify. Often
a dialog box will appear to facilitate the entry of the field data.
5. To add a rule, click the Add button and then add data to the six rule fields. Note that not all fields are required.
6. To delete a rule, select a rule from the list and click the Del button.
7. Move rules to a higher or lower precedence by clicking the Move Up or Move Down buttons, as necessary.
8. When you have finished defining the Firewall Rules, click the Apply button to save changes.
Use the following information to help set the Firewall Rule fields:
• Index—The index number determines the order in which firewall rules will be executed. The rules are executed in order
from lowest index number to highest number. Use the Move Up and Move Down buttons to change the index number.
• Source IP—The Source IP range determines the origin address(es) for the firewall rule. To set the Source IP range,
click the field and a new window will pop up to enter the IP address and a second number that indicates that number
of IP numbers starting at the first address (the range). An IP address of 0.0.0.0 indicates all IP addresses.