Print Download Complete help as Archive Send Feedback

Previous

Next

Other Service - Advanced

What can I do here?

Use this window to set advanced properties for the user defined service.

Getting Here

Getting Here - Object Explorer > New > Service > Other Service > Advanced

User defined Services

What background information do I need to know?

To define a user defined service, you must enter INSPECT code in the Match field, so you must have at least a basic familiarity with INSPECT.

Suppose the IP Protocol field has the value of 17 (UDP Protocol) and the Match field has the following value:

uh_dport > 33000, ip_ttl < 30

To understand the meaning of the Match field, consider the relevant definitions in $FWDIR/lib/base.def:

Name

Definition

Meaning

uh_dport

[ 22 : 2, b]

the UDP destination port

p_ttl

[8 : 1]

IP Time To Live

The comma operand in INSPECT means "and", so the meaning of Match is:

Suppose you wish to pass IP protocol number 53, similar to ospf, egp, and bgp, then define a user-defined service whose IP Protocol field is 53.

Other Service Options

Tell me about the fields...