Jump to content

Firewall traffic rules: Difference between revisions

no edit summary
No edit summary
No edit summary
Line 86: Line 86:


<br>
<br>
[[File:Firewall_traffic_rules_topology.png||border|class=tlt-border|800x800px]]


[[File:Firewall traffic rules topology v3.png||border|class=tlt-border|800x800px]]
[[File:Firewall traffic rules topology v3.png||border|class=tlt-border|800x800px]]
Line 100: Line 99:
*Click '''‘Add’'''.<br>
*Click '''‘Add’'''.<br>


[[File:Networking_rutos_configuration_example_firewall_traffic_rules_1-1_v1.png|alt=Firewall traffic rule to block LAN network.|border|class=tlt-border|800x800px]]
[[File:Networking_rutos_configuration_example_firewall_traffic_rules_1-1_v2.png|alt=Firewall traffic rule to block LAN network.|border|class=tlt-border|750 × 170px]]
 
[[File:Traffic rule new size.png|border|class=tlt-border|828 × 159px]]
 
[[File:Networking_rutos_configuration_example_firewall_traffic_rules_1-1_v2.png|border|class=tlt-border|750 × 170px]]


A new window will pop-out where you will be able to specify additional settings.
A new window will pop-out where you will be able to specify additional settings.
Line 149: Line 144:




These rules indicate that traffic from the host '''192.168.1.11''' in '''LAN''' destined to the IP address of 185.xxx.xxx.xxx on ports '''80''' and '''443''' in '''WAN''' must be accepted. The '''‘Accept forward’''' indicates the action (accept). The slider on the right side shows that the rule is enabled. The rule is above the Deny-LAN-WAN rule, so that traffic from host 192.168.1.11 (PC2) matches the first rule and is accepted. Traffic from other hosts in LAN will match the second rule and will be dropped.
These rules indicate that traffic from the host '''192.168.1.11''' in '''LAN''' destined to the IP address of '''185.xxx.xxx.xxx''' on ports '''80''' and '''443''' in '''WAN''' must be accepted. The '''‘Accept forward’''' indicates the action (accept). The slider on the right side shows that the rule is enabled. The rule is above the Deny-LAN-WAN rule, so that traffic from host 192.168.1.11 (PC2) matches the first rule and is accepted. Traffic from other hosts in LAN will match the second rule and will be dropped.


===Opening a port on the device. ===
===Opening a port on the device. ===