Creating a protocol group

Create a protocol group to combine well-known TCP/UDP ports, protocols, and protocol-specific message types (for example, ICMP message types), into sets that you can easily add to expert rules. For example, you might create a group including POP3 and IMAP4 protocols in order to simplify the administration of your rules regarding e-mail traffic.

To create a Protocol group:

  1. Select Firewall|Expert, then click Groups.

    2. The Group Manager dialog appears.

  2. Select the Protocols tab, then click Add.

    3. The Add Protocol Group dialog appears.

  3. Specify the name and description of the Protocols group, then click Add.

    4. The Add Protocol dialog appears.

  4. Select a protocol type from the Protocol drop-down list.

  5. TCP

  6. UDP

  7. TCP + UDP

  8. ICMP

  9. IGMP

  10. Custom

  11. If you chose TCP, UDP, or TCP/UDP, in step 4, specify a destination, source and port number.
    Name
    Port number
    FTP
    21
    Telnet
    23
    POP3
    110
    NNTP
    119
    NetBIOS Name
    137
    NetBIOS Datagram
    138
    NetBIOS Session
    139
    IMAP4
    143
    HTTPS
    443
    RTSP
    554
    Windows Media
    1755
    AOL
    5190
    Real Networks
    7070
    Other
    Specify port number
    FTP Data
    20
    TFTP
    69
    HTTP
    80
    DHCP
    67
    DHCP Client
    68
    SMTP
    25
    DNS
    53


  12. If you chose ICMP in step 4, specify a description, message name, and type number.
    Message name
    Type number
    Source Quench
    4
    Redirect
    5
    Alt
    6
    Echo Request
    8
    Router Advertisement
    9
    Router Solicitation
    10
    Time Exceeded
    11
    Parameter Problem
    12
    Timestamp
    13
    Timestamp reply
    14
    Information request
    15
    Information reply
    16
    Address Mask Request
    17
    Address Mask Reply
    18
    Traceroute
    30
    Other
    Specify type number


  13. If you chose IGMP in step 4, specify a description, message name, and type number.
    Membership Query
    17
    Membership Report (ver 1)
    18
    Cisco Trace
    21
    Membership Report (ver 2)
    22
    Leave Group (ver 2)
    23
    Multicast Traceroute Response
    30
    Multicast Traceroute
    31
    Membership Report (ver 3)
    34
    Other
    Specify type number.


  14. If you chose Custom in step 4, specify a description, protocol type, and protocol number.
    RDP
    27
    GRE
    47
    ESP
    50
    AH
    51
    SKIP
    57
    Other
    Specify protocol number.


  15. Click OK, to close the Add Protocol dialog.

Join the ZoneAlarm User Forum!





Zone Labs, Inc.
 http://www.zonelabs.com
info@zonelabs.com