Pre-filters allow you to establish a one-to-one relationship between a specific IP address (location) and a user or user group in order to screen transactions before they are evaluated in full by Network Security, or restrict access to a server altogether. For example, by configuring a Location + User Pre-filter, you can specify whether to allow or not allow a transaction from a specific IP address and user (or user group) — allowing it causes the transaction to be further evaluated by Network Security rules; not allowing it is equivalent to a Network Security reject. A Server Pre-filter can perform the same action for all transactions to, for example, the FTP server. The other actions that you can specify are to audit the transaction, send an immediate message, and capture the transaction.
These actions work exactly like their equivalents within the Network Security rules processing scheme.
To configure Pre-filters, see Pre-filters panel, User+Location Pre-filter panel, User+Location Pre-filter panel, and User+Location Pre-filter test panel.
Previous 