he he Tedob has the answers!!

Only thing not covered is trusted vs. untrusted IP addresses, a Trusted IP address is simply an IP that you want to allow access to (in a roundabout sort of way). If you were networking two machines at home, and wanted to allow access to the firewalled machine from the other one you would simply add the IP to the firewalls trusted IP list, a better and more correct way would be to allow traffic to certain ports from that IP rather than trust it completely. Depending on the software you are using (not too experienced with Ontrack myself) in most cases a trusted IP is the address of a machine that is allowed free reign over connections. Having a firewall completely open for a machine like this is a risk in itself.

Hope that adds to Tedob's wonderful post and completes the picture