Filter
Top Products
Chapter 19 Firewall
ZyWALL USG 100/200 Series User’s Guide
345
From Zone
To Zone
This is the direction of travel of packets. Select from which zone the packets come
and to which zone they go.
Firewall rules are grouped based on the direction of travel of packets to which they
apply. For example, from LAN1 to LAN1 means packets traveling from a computer
or subnet on LAN1 to either another computer or subnet on LAN1.
From any displays all the firewall rules for traffic going to the selected To Zone.
To any displays all the firewall rules for traffic coming from the selected From Zone.
From any to any displays all of the firewall rules.
To ZyWALL rules are for traffic that is destined for the ZyWALL and control which
computers can manage the ZyWALL.
The following read-only fields summarize the rules you have created that apply to traffic traveling in the
selected packet direction.
Total
Connection
This field displays the total number of firewall rules.
connection per
page
Select how many entries you want to display on each page.
Page x of x This is the number of the page of entries currently displayed and the total number of
pages of entries. Type a page number to go to or use the arrows to navigate the
pages of entries.
# This is the index number of your firewall rule. It is not associated with a specific rule.
The entry with a hyphen (-) instead of a number is the (non-configurable) default
firewall behavior that the ZyWALL performs on traffic that does not match any other
traffic direction. It is not an editable firewall rule. To apply other behavior, configure
a firewall rule that traffic will match so the ZyWALL will not have to use it’s default
behavior.
Priority This is the position of your firewall rule in the global rule list (including all through-
ZyWALL and to-ZyWALL rules). The ordering of your rules is important as rules are
applied in sequence. Default displays for the default firewall behavior that the
ZyWALL performs on traffic that does not match any other traffic direction. The
ZyWALL checks the traffic against any other applicable rules before applying this
default behavior.
Schedule This field tells you the schedule object that the rule uses. none means the rule is
active at all times if enabled.
User This is the user name or user group name to which this firewall rule applies.
Source This displays the source address object to which this firewall rule applies.
Destination This displays the destination address object to which this firewall rule applies.
Service This displays the service object to which this firewall rule applies.
Access This field displays whether the firewall silently discards packets (deny), discards
packets and sends a TCP reset packet to the sender (reject) or permits the
passage of packets (allow).
Log This field shows you whether a log (and alert) is created when packets match this
rule or not.
Table 113 Firewall (continued)
LABEL DESCRIPTION