In order to add (create) a new Ruleset, use the Add button under the Rulesets list on the Main Window or Insert keyboard key when Rulesets list is focused or use the Rulesets list context menu Add Ruleset command:

Basic Properties

Name is descriptive Ruleset name and doesn’t need to be unique, but it would help distinguishing Rulesets. It can’t be empty and is limited to 50 characters.

Active specifies if the Ruleset is active or not. Only the active Rulesets’ Network Adapters will be activated when protecting the network. All inactive Rulesets in a Security Project will be ignored by the LANProtector Server.

Default Action specifies the Base Ruleset Rule state. It can be either Allow All or Deny All. All network peers that aren’t matched by any of the Rules in the Ruleset will be granted or denied access depending on the Default Action.

Advanced Properties

Ruleset properties in this section shouldn’t be modified unless advanced control over the Ruleset usage by the LANProtector Server is needed.

Use Local MAC Address for Gratuitous Replies will make all ARP gratuitous reply packages used during reserving of IPv4 addresses to have the same originating / source MAC address as the network adapter sending them. This is useful as some operating systems tend to ignore false MAC addresses in ARP gratuitous reply packages. It is ON by default.

Send Reply to Both Parties will make sure that legitimate ARP spoofing is performed in both directions, sending false network peer MAC address information to both the network peer that was denied the network access and its target legit communication network peer. It is safe to use as it will not block communication if it was initiated by the legit network peers that have allowed network access by the LANProtector Server. It is ON by default.

Broadcast Reply will broadcast ARP replies to the whole LAN when performing legitimate ARP package spoofing. Although it may not have great additional affect when denying access of a rogue network peer it can be used to ensure better interactive protection. However when turned ON, this option will cause the denied network peer’s operating system to usually spawn a notification message about the network address conflict. It is OFF by default.

Default button will reset only the Advanced Properties to their default values.