Add Filtering Rules Help

This page shows in it's headline the event type for which the filtering rule is being defined. To specify the filtering rule, the following input options are required:

Service - the drop down list includes the available system services and the user-defined ones, that are displayed as User:<servicename> and may be created on the Service Pool Configuration page. The available system services are:

• HTTP - Hypertext Transfer Protocol, to exchange data between browser and WEB server.
• HTTPS - Hypertext Transfer Protocol Secure, a variant of HTTP that uses a different channel to establish an encrypted connection.
• FTP - File Transfer Protocol, to exchange files via Internet.
• Telnet - terminal emulation tool to access remote stations.
• SMTP - Simple Mail Transfer Protocol, used for emails transmission.
• POP3 - Post Office Protocol, to keep the incoming messages on the server.
• IMAP - Interactive Mail Access Protocol, to access the emails in the internet.
• TFTP - Trivial File Transfer Protocol, a simple way of FTP.
• SSH - Secure Shell, encrypted terminal emulation tool.
• IRC - Internet Relay Chat, one of the most common chat tools on the Web.
• MS File Sharing - (also called SMB - Server Message Block protocol) networking protocol used by windows stations to share e.g. files or printers.
• PPTP pass-through - service for allowing/blocking incoming/outgoing PPTP connections.
• L2TP pass-through - service for allowing/blocking incoming/outgoing L2TP connections.
• IPSec pass-through - service for allowing/blocking incoming/outgoing IPSec connections.
• SNMP - (Simple Network Management Protocol) standard protocol to manage network devices.
• SNMP Traps - sent by a monitored system informing about an unexpected event.
• CCA - (Call Control Access) used for Third Party Call Control feature.
• ACD - contact center solution designed for queuing and automatic distribution of the calls between contact center agents.

Action - the drop down list offers the values Blocked and Allowed to be selected.

Forward to IP - If adding a filter for Incoming Traffic/Port Forwarding the text field Forward to IP appears additionally. It requires the IP address to where incoming traffic from the restricted host should be transferred. The IP address defined in this field will be ignored for blocked action of the Incoming Traffic/Port Forwarding rule.
Note: It is not allowed to forward incoming packets when NAT service is disabled on the Quadro.

Port Translation - text field is available for "Allowed" action only and optionally requires the port number that will stand instead of the original port number when incoming packet is being forwarded. If this field is left empty, the original port number will be used when forwarding the packet.

Restriction - This area offers the possibility to specify the source or destination IP addresses that will be affected by the filtering rule. The following input options are available:

• Any IP - the radio button defines that all host addresses will be blocked/allowed. This selection is not present for the Management Access, Blocked and Allowed IP List rules.
• Single - the radio button defines that exactly one IP address, specified in the corresponding text fields, is affected.
• IP/Mask - the radio button defines that the area of IP addresses specified in the text field alongside will be affected.
• Single URL - the radio button defines that exactly one hostname, specified in the corresponding text fields, is affected.
• Group - the radio button defines that an entire group of IP addresses, specified on the previous page IP Pool Configuration, will be affected. The available groups are listed in the select box.

The Description field is used to insert an optional description of the filtering rule.