Override Protocols Permissions
When the
Override Protocols Permissions check box is selected, the rule blocks access to the hosts specified in the
Hosts parameter. Such a rule denies any connections to those hosts, regardless of the permissions configured for the protocols. As a result, the user cannot access the host even if access is allowed at the protocol level (see
Managing Permissions for Protocols).
Selecting this check box affects the following rule settings:
•Protocol - The TCP and UDP protocols selected. The rule reacts to both TCP and UDP connections.
•Type - The Deny type selected. The rule serves to deny connections.
•Direction - Both directions selected. The rule denies incoming as well as outgoing connections.
•Port - Setting unavailable. The rule denies connections on any TCP or UDP port.
Important: When the Override Protocols Permissions check box is selected, an asterisk with a dot ( *.) in the
Hosts parameter matches not only an arbitrary series of characters that ends with a dot, but also the absence of characters (including a dot). Thus, with the host name *.host.com, the rule would block access to www.host.com as well as to host.com. To block access to host.com only, exactly this name, host.com, must be specified. Access to www.host.com is not blocked in this case. |