Filter
Top Products
ZyWALL 2 Series User’s Guide
30-12 Filter Configuration
Table 30-4 Menu 21.1.1.1: Generic Filter Rule
FIELD DESCRIPTION OPTIONS
Filter
Type
Use [SPACE BAR] and then [ENTER] to select a rule type. Parameters
displayed below each type will be different. TCP/IP filter rules are used to
filter IP packets while generic filter rules allow filtering of non-IP packets.
Generic Filter
Rule
TCP/IP Filter
Rule
Active
Select Yes to turn on the filter rule or No to turn it off. Yes / No
Offset Enter the starting byte of the data portion in the packet that you wish to
compare. The range for this field is from 0 to 255.
0-255
Length Enter the byte count of the data portion in the packet that you wish to
compare. The range for this field is 0 to 8.
0-8
Mask Enter the mask (in Hexadecimal notation) to apply to the data portion before
comparison.
Value Enter the value (in Hexadecimal notation) to compare with the data portion.
More
If Yes, a matching packet is passed to the next filter rule before an action is
taken; else the packet is disposed of according to the action fields.
If More is Yes, then Action Matched and Action Not Matched will be No.
Yes
No
Log Select the logging option from the following:
None - No packets will be logged.
Action Matched - Only packets that match the rule parameters will be
logged.
Action Not Matched - Only packets that do not match the rule parameters
will be logged.
Both – All packets will be logged.
None
Action Matched
Action Not
Matched
Both
Action
Matched
Select the action for a packet matching the rule.
Check Next
Rule
Forward
Drop
Action
Not
Matched
Select the action for a packet not matching the rule.
Check Next
Rule
Forward
Drop
Once you have completed filling in Menu 21.1.1.1 - Generic Filter Rule, press [ENTER] at the message
“Press ENTER to Confirm” to save your configuration, or press [ESC] to cancel. This data will now be
displayed on Menu 21.1.1 - Filter Rules Summary.