Creating a protocol group
Create a protocol group to combine well-known TCP/UDP ports, protocols, and protocol-specific message types (for example, ICMP message types), into sets that you can easily add to expert rules. For example, you might create a group including POP3 and IMAP4 protocols in order to simplify the administration of your rules regarding e-mail traffic.
To create a Protocol group:
- Select COMPUTER | Advanced Firewall | Settings | Expert Rules Rules, then click Groups.
The Group Manager dialog appears.
- Select Protocols, then click Add.
The Add Protocol Group dialog appears.
- Specify the name and description of the Protocols group, then click Add.
The Add Protocol dialog appears.
- Select a protocol type from the Protocol drop-down list
- Depending on the protocol type you chose, do one of the following:
If you chose TCP, UDP, or TCP/UDP, specify a destination, source and port number.
Name
|
Port number
|
FTP
|
21
|
Telnet
|
23
|
POP3
|
110
|
NNTP
|
119
|
NetBIOS Name
|
137
|
NetBIOS Datagram
|
138
|
NetBIOS Session
|
139
|
IMAP4
|
143
|
HTTPS
|
443
|
RTSP
|
554
|
Windows Media
|
1755
|
AOL
|
5190
|
Real Networks
|
7070
|
Other
|
Specify port number
|
FTP Data
|
20
|
TFTP
|
69
|
HTTP
|
80
|
DHCP
|
67
|
DHCP Client
|
68
|
SMTP
|
25
|
DNS
|
53
|
If you chose ICMP in step 4, specify a description, message name, and type number.
Message name
|
Type number
|
Source Quench
|
4
|
Redirect
|
5
|
Alt
|
6
|
Echo Request
|
8
|
Router Advertisement
|
9
|
Router Solicitation
|
10
|
Time Exceeded
|
11
|
Parameter Problem
|
12
|
Timestamp
|
13
|
Timestamp reply
|
14
|
Information request
|
15
|
Information reply
|
16
|
Address Mask Request
|
17
|
Address Mask Reply
|
18
|
Traceroute
|
30
|
Other
|
Specify type number
|
If you chose IGMP, specify a description, message name, and type number.
Membership Query
|
17
|
Membership Report (ver 1)
|
18
|
Cisco Trace
|
21
|
Membership Report (ver 2)
|
22
|
Leave Group (ver 2)
|
23
|
Multicast Traceroute Response
|
30
|
Multicast Traceroute
|
31
|
Membership Report (ver 3)
|
34
|
Other
|
Specify type number.
|
If you chose Custom, specify a description, protocol type, and protocol number.
RDP
|
27
|
GRE
|
47
|
ESP
|
50
|
AH
|
51
|
SKIP
|
57
|
Other
|
Specify protocol number.
|
- Click OK, to close the Add Protocol dialog.
|
|
Print
