Filters

Some time you will need to allow or deny access for some computers. This may be done using traffic filters. To create new and edit existing filters go to the Filters page in main Prisma Firewall window. You'll see the list contains filters' properties. Using manage buttons at the bottom of the page you can add new filter, edit or remove existent. Creating a new filter you must define filter name, IP address which will be filtered and action for the filter (allow or deny). This is required properties. Without this your filter won't be any sense.

For customize your filter click arrow button at the bottom-left of the filter properties window. You can specify not only single IP address but IP address range or apply filter for all IPs. Also you can define port (port range if you wish), protocol and TTL (Time-To-Live) option of the filter.
Using priorities of your filters provides you customize queue of filters. Higher-priority filter processes traffic first. For example if you wish to deny all traffic exclude traffic on your http-service you must create two filters. The first of them denies all traffic from all IPs unconditionally. The second filter allows traffic from every IP on port 80 and has higher priority than first filter. The second filter will allow traffic first if it goes on port 80.

For example, if you wish to block a specific port you must do following steps:

• switch to Filters page;
• press "New..." button;
• name the filter (optional);
• check "Port" radio-button and write the port number in the editbox;
• select "DENY" from the Access drop-list;
• press "OK" button to save the new created filter.