Adding a Firewall Rule for Outgoing Activity by IPv6 Address
To add a rule for filtering outgoing activity by IP address, press the F6 key in the Dynamic Filtering - Outgoing IPv6 Address Security screen, shown in Setting Firewall Rules for Outgoing Activity by IP Address
The Dynamic Filtering - Add Outgoing IPv6 Address screen appears:
| Dynamic Filtering- Add Outgoing IPv6 Address Type choices, press Enter. IPv6 Address . . . . . Address prefix length . 128 1-128 Text . . . . . . . . . FTP . . . . . . . . . . Y=Yes , S=SSL only, A=Skip checks B=SSL+Skip checks L=Skip checks+Log M=SSL+Skip checks+Log S=SSL requires that the connection is encrypted (Checked from V5R1) F3=Exit F12=Cancel |
Enter or modify information in the following fields:
IPv6 Address
The IPv6 address for the range of addresses. In addition to an IPv6 address, you can set this field to *ALL for rules applied to all IPv6 ranges that aren't otherwise specified.
Address prefix length
The length of the IPv6 address prefix. This can be set to from 1-128.
Text
A free-form text description of the IPv6 address range.
FTP
A letter or blank space indicating how Firewall is to filter FTP requests going to that IPv6 Address Range.
The possible values are:
- Blank or N: Reject all incoming activity
- S: Allow activity, but do not log this
- Y: Allow activity
In many situations, you can dramatically improve performance by using options B or L. For example, you might use them when an IP address that you know to be well secured and is using SSL, and which doesn't require checking the SQL statements, sends a high volume of requests.