Adding a filter rule

In the Filtering tab, click on New rule > Standard rule.

A new rule, which is disabled by default, is created:

State

Double-click on the value off in the Status column. The status of the rule will change to on.

Action

Double-click on the value Block in the Action column:

In the Action field, select pass,

In the Log level field, select log if you want traffic matching this rule to be reflected in the IPS-Firewall’s filter logs.

Double-click on the value Block in the Action column:

  • In the Action field, select pass,
  • In the Log level field, select log if you want traffic matching this rule to be reflected in the IPS-Firewall’s filter logs.

Source

Double-click on the value Any in the Source column. In the Source hosts field, select the network object client_desktop.

REMARK

You can refine your filter rule by indicating in the Incoming interface field an interface on which your client workstation’s network is connected.

Destination

Double-click on the value Any in the Destination column. In the Destination hosts field, select your network object intranet_server,
   

REMARK

You can refine your filter rule by indicating in the Outgoing interface (Advanced properties tab) field the network interface to which the intranet server is connected.

Destination port

Double-click on the value Any in the Destination port column. In this case for the Destination port field, select HTTP.

Double-click on the value Any in the Destination port column. In this case for the Destination port field, select HTTP.

Rule for administering the IPS-Firewall

Following the method described in the paragraph Adding a filter rule, add a rule allowing the IPS-Firewall to be administered (rule 2):

Source: Any (or a group of authorized hosts)

Destination: Firewall_Bridge object

Port: Admin_Srv object