User Guide

ManualsBrandsAlcatel-Lucent ManualsOtherSPEDDTOUCH DSL ROUTERS

151

152

153

154

155

156

157

158

159

160

Chapter 5. Command Line Interface Reference 153

REMOTE LIST

Lists the remote router entry (or all the entries) in the remote router database. The result is a complete display of

the current configuration settings for the remote router(s), except for the authentication password/secret.

-dp <

first dest port

>[:<

last dest port

where <

first dest port

> defines the first or only destination port and <

last dest port

>, if present,

defines the last destination port in a range. If not specified, the <

first dest port

> is assumed to be

0, the <

last dest port

> is assumed to be 0xffff.

-b

This option indicates that this filter should be tested twice; the first time with the source filter

information matched against the source information in the IP packet and the destination filter

information matched against the destination information in the IP packet; and the second time

with the source filter information matched against the destination information in the IP packet

and the destination filter information matched against the source information in the IP packet.

-c <

count of times rule used

indicates how many IP packets have matched this filter since the router was rebooted.

-tcp syn|ack|noflag

where

syn

is the TCP SYN flag,

ack

is the TCP ACK flag, and

noflag

means that there is a

TCP packet

and

neither the SYN flag nor the ACK flag are set. This option is ignored if the IP

packet is not a TCP packet. Unless specified, the TCP SYN and TCP ACK flags are not

checked when the IP packet is matched with this filter.

Note:

You may specify

than one

-tcp

option in an IP filter. For example, to match this IP

filter against the initiation of a TCP connection, use

-tcp syn

. The IP packets that will match

this IP filter have the TCP SYN flag set but

not

the TCP ACK flag .

To match the response to initiation of a TCP connection,

-tcp syn -tcp ack

are needed. Only IP

packets with

both

the TCP SYN and TCP ACK flags would this IP filter.

port#

Ethernet interface number. Can be 0 or 1.

Examples:

remote ipfilter flush forward internet

This command deletes all IP filters of type “forward” on the remote interface internet.

remote ipfilter append forward drop -da 192.168.0.0 -dm 255.255.0.0

internet

This command denies any IP traffic whose destination address is 192.168.0.0 masked with 255.255.0.0

(i.e., the command matches IP addresses 192.168.0.0 through 192.168.255.255) to the remote internet.

remote ipfilter append forward drop -da 192.168.0.0:192.168.255.255

internet

This command has the same effect as the previous filter.

remote ipfilter list forward internet

This command will list all IP filters defined of type “forward” on the remote internet.

remote list

remoteName>

]