You are about to define here a new rule to authorize a specific connection between two different zones.
Whenever a connection matches the criterion defined here, it will be allowed.
Rule ID | The unique ID number identifying this policy rule. |
Pre-defined Services | Choose either a common service in the pull-down list, or enter a name or service number in the field. |
Protocol | The protocol type associated to that service. |
Coming from | The zone from which the connection request is originated. |
and going to | the zone to which the connection request is directed, optionally followed by an IP or a subnet. Leave "-" in the field for the whole zone. |
Forward | When this option is checked, the rule behavior is modified. All requests from the specified source and for the specified service will be caught, whatever the target system is. Then this request will be forwarded to the "and going to" IP. In this case, the "and going to" field must specify a specific IP address. |
Example: You wish to forward all ssh connection requests from the Internet to local system 192.168.1.3.
Pre-defined Services | Secure remote connection [ssh] |
Protocol | tcp |
Coming from | wan |
and going to | lan | 192.168.1.3 |
Forward | [checked] |