Help

Firewall Rules Configuration

We are here in the very core of the firewall. The "Rules" sub-section defines exceptions to the policies established in "Default Policies". There is one entry in the table for each of these rules.

The table summarizes all the rules currently configured. By default, MandrakeSecurity define standard rules for the default zones (LAN, WAN, DMZ). As the default policy is to "REJECT" any connection, the default rules allow some precise ones:

If there are many rules, you can filter them. Choose the desired "Client" and "Server" zones as well as a "Port" in the pull-down lists and click the icon. The special "*" zone or port is simply a wildcard matching all possibilities.

Reminder: the "fw" zone designates the firewall itself.

For each of the defined rules of the table, click on the corresponding icon to modify that rule or to definitely remove it.

If you wish to add a new rule, two forms are actually available: click on the corresponding "Add Rule" icon:

Add Simple Rule You will get here the simple rule form, allowing to define an "ACCEPT" rule only specifying the source, destination and protocol.
Add Custom Rule The form displayed here allows the definition of more complex rules, with all types of actions available, and some options, such as logging, forwarding and SNAT.

Do not forget to click on the Apply button at the end of the page once all default policies are set in order to make your changes effective.