Cisco SA520-K9 Administration Guide - Page 113

Firewall Configuration Prioritizing Firewall Rules 4 • External IP Address: Select one of the following options to specify the IP address that is exposed to the public: - Dedicated WAN: The public will connect to this service by using the IP address that is associated with your WAN interface. - Optional WAN: The public will connect to this service by using the IP address that is associated with the WAN interface on the Optional port. - Other: The public will connect to this service by using another IP address that your ISP has provided to you. If you choose this option, enter the address in the Other IP Address field. STEP 5 Click Apply to save your settings. The firewall rule appears on the Firewall Rules page. Prioritizing Firewall Rules If a firewall policy contains more than one rule that permits traffic, you can reorder them by priority. You can move a rule up, move a rule down, or move it to a specified location in the firewall rules list. NOTE This feature only applies to IPv4 firewall rules. STEP 1 Click Firewall > Firewall > IPv4 Rules, or you can use the Getting Started (Advanced) page. In the Firewall and NAT Rules section, click Configure Firewall and NAT Rules. The IPv4 Firewall Rules window opens. The firewall rules appear in the List of Available Firewall Rules table. The list includes all firewall rules for controlling traffic from a particular zone to a particular destination. STEP 2 To view the list of rules belonging to the same group, choose the source and destination from the From Zone and To Zone drop-down menus and click Display Rules. Only the rules for the specified security zones appear. For example: If you choose WAN and LAN from the Zone drop-down menus, only the rules for the WAN to LAN security zones appear. STEP 3 To reorder the rules, click Move. Cisco SA500 Series Security Appliances Administration Guide 113