Adding Rules
 		Previous Topic  Next Topic 

Adding a Rule


Click on the Advanced Rules button in the left navigation menu. Select the zone where you wish to add the rule by clicking on one of the tabs : Internet Zone or Trusted Zone. Click the Add icon at the bottom of the page.


Step One: Select a condition


A list of conditions is displayed here. Select one or more conditions that you want to check. Depending on which condition you select, more detailed conditions may be presented here so you have the option to be as general or specific as you like.


For example, selecting Ethernet type IP will list additional conditions for protocol, remote IP and local IP. NOTE: Not every Ethernet type will allow you to choose a protocol (mostly IP and IPv6).


Step Two: Define the condition


Here you are able to specify values for the conditions you selected in step one. Click on the 'Undefined'  link to view pertaining options for each condition. For example, if you selected the condition 'where the Ethernet type is' in step one, in this step, you can define the Ethernet type by clicking on the link here and selecting one from a list or even define a custom type.


Step three : Select Action


Here you select the action you want to perform on the packet.



In the rules that are supplied by PC Tools Firewall Plus installation, the logs are marked only in the blocking rules.


Step four: Specify a name for the rule and describe what the rule does.


This will help you identify the rule in the advanced rules screen.


Step five: Setup rule options


Here you can activate the rule and also review it, and make modifications if necessary. Click on the links to modify the characteristic of the rule.


Example


Let us create a rule that allows the computer to send DNS requests.


1. Go to the Advanced Rules screen and select a Zone: Internet Zone or Trusted Zone (the rule that you will create will be added to the zone that you select).


2. Choose Ethernet type IPv4 or IPv6.


3. Choose where the protocol is and in the bottom view click on the link Change Protocol.


4. Choose TCP.


5. Tick the option where the remote port is and in the bottom view click on the link Undefined.


6. Leave the Type as Match Port and in the Condition enter 53 beside the Start check box.


7. Click Next and then select Allow and click Next again.


8. Name the rule as Allow Outgoing DNS requests and click Finish.


9. The rule was added to the zone but not saved yet. In order to save it you need to press on Apply.



Deleting a rule


From the Advanced Rules page, select the rule and click the Delete icon at the bottom of the page.