Log 

Sets logging behavior. The options are: 

• LOG_NONE - Do not log packets.

• LOG_SUMMARY - Record the first 40 bytes of the packet in the log.

• LOG_DETAIL - Record the complete packet in the log.

SNMP 

Specifies whether the Screen should issue an SNMP trap message when the rule is applied. The options are: 

• SNMP_NONE - Do not send an SNMP alert message when a packet matches the criteria of this rule.

• SNMP - Send an SNMP alert message when a packet matches the criteria of this rule.

ICMP Reject 

Identifies the ICMP rejection message issued when the rule is applied. In most cases, the Screen rejects packets by sending an ICMP Destination Unreachable packet with the reject code set as specified in the ICMP action in the rule. 

The one exception is the PORT_UNREACHABLE ICMP action. In this case, the Screen rejects TCP packets by sending a TCP RESET packet and other packets by sending an ICMP Destination Unreachable (Port Unreachable) message. 

The options for the actions are: 

• NONE

• NET_UNREACHABLE

• HOST_UNREACHABLE

• PORT_UNREACHABLE

• NET_FORBIDDEN

• HOST_FORBIDDEN

PROXY 

Specifies the proxy you want to use, if any. The options are: 

• NONE

• PROXY_HTTP

• PROXY_FTP

• PROXY_SMTP

• PROXY_telnet

If you choose a proxy, another dialog box, according to the proxy chosen, is displayed. 

PROXY USERS 

You must type the name or names of the proxy users in this field. You find the proxy users by selecting proxy user as the type of object and searching for them in Common Objects panel of the Policy Rules page.