Setting Free-Style Firewall Rules for Servers
Free-Style rules can use a wide variety of criteria and operators to create further rules based of servers. If the Free field on the entry for the server on the Work for Server Security screen is set to Y (as shown in Setting Firewall Rules for Servers), Firewall runs free-style rules after the other rules for the server.
To set free-style rules for a server, select 17. Free Style Rules from the Firewall main menu.
The Work with Firewall Real-Time Rules screen appears:
| Work with Firewall Real-Time Rules Firewall Free-Style Rules Subset by entry . . by description . . Type option, press Enter. by classification. C=Compliance,.. 1=Select 3=Copy 4=Delete 8=Msg 9=Explanation & Classification Opt Entry Seq Alw Description 04 1.0 Y *SQL Database Server - SQL access 45 1.0 Y *DBOPEN Open Database 2.0 Y *DBOPEN Open Database 47 1.0 Y *SKTACP Socket Accept 50 1.0 Y *DBSTT Database statistics 2.0 Y *DBSTT Database statistics Bottom F3=Exit F6=Add New F8=Print F12=Cancel F22=Renumber |
Each line of the body of the screen refers to a single rule. It contains several fields after the Opt field:
Entry
The entry type for the server.
Seq
A number determining the order in which rules run. Rules for a given server run together. For example, rules for a given server with the Seq values 1.0, 1.1, 2.0, 4.0 would run in that order, regardless of the order in which they appear in the displayed list.
Alw
Whether Firewall allows or rejects access requests that match the rule. Possible values are:
- Y: Allow
- N: Reject
Description
A description of the rule. If no description has been entered, this shows the standard description of the entry type.
To add a rule, press the F6 key. The Add Selection Rule screen appears, as shown in Adding Free-Style Firewall Rules for Servers. After you enter initial data, corresponding to the fields here, the Filter Conditions screen appears, as shown in Setting Filter Conditions, where you set the detailed criteria for the filter.
To perform the following tasks, enter the corresponding digits in the Opt column for the rule:
- 1: Modify a rule. The Modify Selection Rule screen appears, where you modify the rule by a process similar to adding a new one.
- 3: Copy a rule. The Copy Selection Rule screen appears, in which you create the copied rule based on the current one.
- 4: Delete a rule. The Delete Selection Rule screen appears, confirming that you wish to delete the rule.
- 8: Create or modify a message to be sent if the rule triggers a response via Action.
- 9: See and enter more information about a rule.