Src/Mask field: Specifies the source IP address or host name and filter mask length. The mask here is the number of bits the rule examines in the incoming address, not the subnet mask (if you put the subnet mask here, the rule would apply to the whole subnet address).
Examples: aaa.bbb.ccc.ddd/masklen (192.45.20.45/24) or hostname.masklen (myhost.ipsilon.com.24)
Range: Valid IP address or host name and mask for the network.

SPort/Mask field: Specifies the TCP/UDP source port and mask this rule is to be associated with.
Examples: 1024, 1024 0xfff0, 1024/0xfff0, nfs, nfs 0xfff0, nfs/0xfff0
Range: number, number mask, number/mask, service, service mask, service/mask.

Dest/Mask field: Specifies the destination IP address or host name and filter mask length. The mask here is the number of bits the rule examines in the outgoing address, not the subnet mask (if you put the subnet mask here, the rule would apply to the whole subnet address).
Examples: aaa.bbb.ccc.ddd/masklen (192.45.20.45/24) or hostname.masklen (myhost.ipsilon.com.24)
Range: Valid IP address or host name and mask for the network.

DPort/Mask field: Specifies the TCP/UDP destination port and mask this rule is to be associated with.
Examples: 1024, 1024 0xfff0, 1024/0xfff0, nfs, nfs 0xfff0, nfs/0xfff0
Range: number, number mask, number/mask, service, service mask, service/mask.

IPproto field: Specifies the IP protocol this rule is to be associated with.
Examples: tcp, udp, icmp, 20, 23, 25
Options: TCP, UDP, ICMP, or numeric representation of IP protocol values.

Interface field: The interface this rule is to be associated with on this system.
Options: any, existing interfaces
Default: any

Inbound field: Specifies whether the rule is applied to inbound traffic. If you select yes for the this field, the Outbound field should be set to no.
Options: yes, no
Default: yes

Outbound field: Specifies whether the rule is applied to outbound traffic. If you select yes for the this field, the Inbound field should be set to no.
Options: yes, no
Default: no