Cisco SA520-K9 Administration Guide - Page 104

Firewall Configuration Configuring Firewall Rules to Control Inbound and Outbound Traffic 4 • Port triggers This section includes these topics: • Preliminary Tasks for Firewall Rules • Configuring the Default Outbound Policy • Configuring a Firewall Rule for Outbound Traffic • Configuring a Firewall Rule for Inbound Traffic NOTE For detailed examples, see Firewall Rule Configuration Examples, page 114. Preliminary Tasks for Firewall Rules Depending on the firewall settings that you want to apply, you might need to complete these tasks before you can configure your firewall rule: • If you want to create rules that apply to custom services, first create the records for the services. See Creating Custom Services, page 104. • If you want to create rules that apply only on specified days and times, first create the schedules. See Creating Schedules for a Firewall Rules, page 105. • If you want to use additional public IP addresses (typically assigned by your ISP) for firewall rules other than the IP address configured on the WAN interface. See Configuring IP Aliases for WAN interfaces, page 106. Creating Custom Services The security appliance is configured with a long list of standard services that you can use to configure firewall rules and port forwarding rules. (See Appendix B, "Standard Services.") If you need to configure a firewall rule for a service that is not on the standard list, first you must identify the service by entering a name, specifying the type, and assigning the port range. Cisco SA500 Series Security Appliances Administration Guide 104