
14 How to configure the AT-AR450S Firewall using the Graphical User Interface (GUI)
C613-16011-00 REV A
13 February 2004
Figure 13: An example of the Add Traffic Rule window
There are three tabs on this window:
■ Traffic type.
■ IP address settings.
■ Scheduling.
To read about the default behaviour of the firewall and firewall policies in detail, refer to
“Understanding the firewall’s behaviour” on page 19.
Traffic Type tab
The traffic type tab enables you to set the general properties of a particular firewall rule as
shown in Figure 13. The properties and their meanings are described in Table 3.
Table 3: Traffic type properties and their meanings
Property Meaning
Action There are three types:
Deny - block matching traffic
Allow - allow matching traffic to pass through the firewall, and allow the
creation of new TCP/UDP sessions that match the rule
NoNAT - the same effect as Allow, but has the added feature that NAT will
not be applied to the packets, even if NAT is defined on the policy to which
the rule is applied.
Rule Number This is not just an ID number for the rule but also specifies the order in which
rules will be used, i.e. an incoming packet is compared against the firewall
rules in the order defined by their Rule Numbers. The action applied to the
packet will be the action defined by the FIRST rule that matches the packet.
If no rules match the packet, the applied action will be the default action for
the particular direction of the packet, Public-to-Private or Private-to-Public.
Komentáře k této Příručce