Hi, In the enhanced ruleset, many source or destination address are taken as default 'ALL', which should be the address of local PC. I just take an example: In this case, is the 'ALL' equivalent to 'Equal My @"?
No, it is not equivalent. You can receive packets in which the destination address is not your IP address. Anyway this is a blocking rule, so it is not a problem to catch more packets, especially if they are not supposed to happen. Frederic
thanks, Frederic From your indicating and my understanding, LnS extracts the 'source' and 'destination' from packet header and compare them with the rules. So, my questions is: in the Source (PC>>NET), what's the meaning of the 'PC' and 'NET'? Seems "PC" is not ONLY my local machine's IP address.
Yes, exactly. Source (PC>>NET) means "Source field from packet header, when the packet is sent from PC to interNET". For inbound+outboud rules, the remote address is Source for received packets, and the remote address is Destination for sent packets. That's why the remote address is put on the side "Dest (PC>>NET) / Source (NET>>PC)". Frederic