Filter Rules
The actual rule-building functionality accessible on the Access Rules awning is
Filter Rules. From the Access Rules tab, bang the Clarify Rules radio button.
Filter rules acquiesce you to admittance or abjure specific URLs to which users can navigate.
This functionality can be provided for specific and alone URLs or based
on interoperation with a URL clarification server as defined in the URL Filtering
category in the System Properties tab.Valid URL clarification casework are Websense
and N2H2. Before configuring URL filtering, you charge specify a URL filtering
server from the System Properties tab.
From the Clarify Rules screen, you can additionally configure the PIX firewall to
permit or abjure specific ActiveX or Java functionality.To do so, baddest Add from
the Rules menu.The Add Rule window appears (see Figure 9.62).
www.syngress.com
Figure 9.61 The AAA Add Rule Window
PIX Device Manager • Chapter 9 519
Select clarify Java Applet from the Baddest an activity pull-down menu, then
fill in the adapted Source Host/Network and Destination Host/
Network fields. Finally, specify the ports over which applets should be filtered.
Typically, these ethics will be anchorage 80 because that is the absence account HTTP.
When finished, bang OK to acknowledgment to the Access Rules tab.
At this point, you accept configured the firewall itself, created specific hosts and
network objects, created NAT rules, and acceptable assorted entering and outbound
access through the firewall. Let’s about-face now to VPN configuration.