Internet Service Configuration

This mask defines the active firewall policy for a service. You can change the availability of a service in the internal  and perimeter networks without changing the main IP-filtering rules of that service.
The config-file is 'etc/services.cfg'.

These settings don´t alter the services on the  Firewall!

There are four policies for each service:
Blocked 
Filtered 
Outgoing 
Incoming
 
Int.- Masquerading
Perim.- Masquerading
I->P - Masquerading
- the service is blocked 
- the normal IP-filtering rules are used (as defined in Screening
- only incoming connections are possible (Filtered AND Outgoing) 
- only incoming connections are possible (Filtered AND Incomming)
 
- IP-Masquerading for service from internal network (to $ANY)
- IP-Masquerading for service from perimeter network (to $ANY)
- IP-Masquerading for service from internal to perimeter network

Services and IP-Masquerading on internal and perimeter network