Manualshelf

User Guide

ManualsBrandsAlcatel-Lucent ManualsOtherOMNIACCESS SAFEGUARD CONTROLLER
341342343344345346347348349350
OmniAccess SafeGuard OS Administration Guide
349
Chapter 9: End Point Validation
2 Add a description of the policy, using the description keyword. This step is
optional, but is recommended. Strings are entered in double quotation marks. For
example:
(SafeGuardOS) (config) #policy epv trigger
(SafeGuardOS) (policy-epv) #description “This is our standard trigger
policy for EPV.”
(SafeGuardOS) (policy-epv) #
3 Define a filter for each rule and an action to execute. The syntax of a trigger policy
filter is:
filter name {direction} from source to destination protocol action
Syntax Description name Name of the user filter.
direction (Optional) Specifies the direction that a flow
is initiated. Direction can be any of the
following:
flow-in – apply to flows initiated from
the user-side of the SafeGuard device
flow-out – apply to flows initiated from
the network-side of the device
(Default) blank, which applies to flows in
either direction
source Specifies the source endpoint of the traffic.
It can be any of the following:
any – Wildcard, which matches all source
host – IP address or MAC address of the
host
macmask – MAC mask of the host
network – IP address of the subnet
network-zone – MAC address, IP address,
network address, or address range
range – IP address range
NOT – Negates the from criteria, except
for ‘any’