Filter
Top Products
Chapter 11 Firewall
ZyWALL 2 Plus User’s Guide
182
Your customized rules take precedence and override the ZyWALL’s default settings. The
ZyWALL checks the source IP address, destination IP address and IP protocol type of network
traffic against the firewall rules (in the order you list them). When the traffic matches a rule,
the ZyWALL takes the action specified in the rule.
11.2 Packet Direction Matrix
The ZyWALL’s packet direction matrix allows you to apply certain security settings (like
firewall) to traffic flowing in specific directions.
For example, click SECURITY > FIREWALL to open the following screen. This screen
configures general firewall settings.
Figure 114 SECURITY > FIREWALL > Default Rule (Router Mode)
Packets have a source and a destination. The packet direction matrix in the lower part of the
screen sets what the ZyWALL does with packets traveling in a specific direction that do not
match any of the firewall rules.
To set the ZyWALL to by default silently block traffic from the WAN from going to the DMZ
interfaces, you would find where the From WAN row and the To DMZ column intersect and
set the field to Drop as shown.
Table 47
A specific interface or any of the ZyWALL’s VPN
connections
A specific interface or any of the ZyWALL’s VPN
connections
From To