The Rulesets Configuration Panel allows you to manage rulesets
that are used while filtering incoming and outgoing IP packets through
the IP interfaces on your computer. Each ruleset has a default policy
and a set of exception rules.
When default policy is Permit packets, any packet accepted
by any rule is processed as rule specifies, and a packet not accepted by all
the rules is allowed to be sent or received. When default policy is
Drop packets, any packet accepted by any rule is processed
as rule specifies, and a packet not accepted by all the rules is rejected
(destroyed).
Create ruleset
Calls the ruleset creation wizard for creating a new ruleset
Rename ruleset
Allows you to rename the selected ruleset
Delete ruleset
Removes the selected ruleset
Up rule
Move selected rule to the beginning of rules list
Down rule
Move selected rule to the end of rules list
Add rule
Adds a new exception rule to the selected ruleset
Input template ...
Adds a new exception rule to the selected ruleset using input
rules templates
Output template ...
Adds a new exception rule to the selected ruleset using output
rules templates
Delete rule
Removes the exception rule from the selected ruleset
Default policy
Allows you to change the default policy for the selected ruleset
Logging option
Enables or disables logging of packets that do not complies
with any of exception rules and were processed in accordance
with default policy
Exception-rule table columns
Protocol
Protocol declared in the packet header
Source
The IP address of the packet sender. This IP address may be a
subnet address, or a special address. There are some kinds of
special addresses:
- local - your computer IP address
- local net - subnet address your computer connected to
- any - any IP address
- broadcast - broadcast address 255.255.255.255
- net broadcast - broadcast address of the subnet your computer is connected to
- area - link to the user-defined set of hosts (area). See Areas Configuration Panel for details
netmask/area
A subnet mask for the sender address, or an area name if
area is selected in the Source column
port/type
The lowest number of the sender port number range
for the TCP or UDP protocols, or an ICMP message
type if the ICMP protocol selected
port/code
The highest number of the sender port number
range for the TCP or UDP protocol, or an ICMP
message code if the ICMP protocol is selected
Destination
IP address of the packet destination. This can be a special address
netmask/area
Subnet mask for the destination IP address, or an area name
if the destination address is an area
Port
The lowest number of the destination port number range
range
The highest number of the destination port number range
Action
Describes action that should be applied to the packets that complies with
this rule. There can be two kinds of action: drop means that this
packet will be dropped, and pass means that packet should be
passed and processed by operating system or application
Log
Tells Irbis Firewall to log or not to log this packet. If you
set Log option in some rule it means that all packets that
complies with this rule will be logged any way. This feature allows
you to log passed and denied packets and gives you advanced logging
control (new to Irbis Firewall version 1.3.3)
|