• The first three radiobuttons select what will happen when you press the accept or deny button.
  this packet means, that only this single packet will be allowed to pass or will be dropped.
  queued packets means, that all the packets which are currently awaiting decision will be accepted or dropped. You usually use this together with deny.
  create rule from this packet means that you want to build a rule based on this packets. Only in this case the values of the checkboxes below are relevant.
• Chain: the chain specifies if this is an incoming packet or an outgoing one. If you want to know more about this read the iptables manual.
• 1 hour: fireflier permits to create rules with a timeout. If you want to allow somebody to access your ftp-server - but only for 1 hour - you can create a rule which will be deleted automatically after the timeout or at shutdown of fireflier
• Checkboxes: the first four lines are split: on the left hand side you see the sender data of the packet, and on the right hand side you see the destination data.
  below the IP Adresses there is the DNS resolved version of the address - in this case not possible. Resolution of course works only after you have permitted the traffic between the name server and your computer.
  the last two lines of the checkboxes are special:
  the first one activated filtering on application for this rule. You could for example allow licq any communications - if you trust licq. Filtering on application is a little slower and should not be used for high traffic rules.
  the second one activates Connection tracking (cf iptables). For a TCP or UDP rule with activated connection tracking, there will be a second rule, which allows all packets which belong to this connection to pass.