Chapter 25 Firewall
UAG5100 User’s Guide
254
Figure 174
Configuration > Firewall > Session Control > Add/Edit
The following table describes the labels in this screen.
25.4 Firewall Rule Configuration Example
The following Internet firewall rule example allows Doom players from the WAN to IP addresses
172.16.1.10 through 172.16.1.15 (Dest_1) on the LAN.
1
Click Configuration > Firewall. In the summary of firewall rules click Add to configure a new first
entry. The sequence (priority) of the rules is important since they are applied in order.
Table 112
Configuration > Firewall > Session Control > Add/Edit
LABEL
DESCRIPTION
Create new
Object
Use to configure any new settings objects that you need to use in this screen.
Enable Rule
Select this check box to turn on this session limit rule.
Description
Enter information to help you identify this rule. Use up to 60 printable ASCII characters.
Spaces are allowed.
User
Select a user name or user group to which to apply the rule. The rule is activated only
when the specified user logs into the system and the rule will be disabled when the user
logs out.
Otherwise, select any and there is no need for user logging.
Note: If you specified an IP address (or address group) instead of
any
in the field below, the
user’s IP address should be within the IP address range.
Address
Select the IPv4 source address or address group to which this rule applies. Select any to
apply the rule to all IPv4 source addresses.
Session Limit per
Host
Use this field to set a limit to the number of concurrent NAT/firewall sessions this rule’s
users or addresses can have.
For this rule’s users and addresses, this setting overrides the Default Session per Host
setting in the general Firewall Session Control screen.
OK
Click OK to save your customized settings and exit this screen.
Cancel
Click Cancel to exit this screen without saving.