Adding a Firewall Rule for Outgoing Activity by IP Address
To add a rule for filtering outgoing activity by IP address, press the F6 key in the Dynamic Filtering - Outgoing IP Address Security screen, shown in Setting Firewall Rules for Outgoing Activity by IP Address (STRFW > 2 > 5).
The Dynamic Filtering - Add Outgoing IP Address screen appears:
| Dynamic Filtering- Add Outgoing IP Address Type choices, press Enter. IP Address . . . . . Address, *ALL Subnet mask . . . . . 255.255.255.255 F4 for list Text . . . . . . . . FTP . . . . . . . . . Y=Yes , S=SSL only, A=Skip checks B=SSL+Skip checks L=Skip checks+Log M=SSL+Skip checks+Log S=SSL requires that the connection is encrypted (Checked from V5R1) F3=Exit F4=Select Subnet F12=Cancel |
Enter or modify information in the following fields:
IP Address/*LCL
The IPv4 address for the address range. In addition to IP addresses, you can set this field to *ALL for rules applied to all IP address ranges that aren't otherwise specified.
Subnet mask
The subnet mask for the address range. For a list of possible subnet masks, showing the number of addresses that the range would include, press the F4 key.
Text
A free-form text description of the IP address range.
FTP
A letter or blank space showing how the system filters outgoing FTP requests:
The possible values are:
- Blank or N: Reject all incoming activity
- S: Allow activity, but do not log this
- Y: Allow activity
To use options B, M, and S, which use SSL, the connection must be encrypted.