User`s guide
Table Of Contents
- Ascend Customer Service
- How to use this guide
- What you should know
- Documentation conventions
- How to use the on-board software
- Manual set
- Configuring WAN Connections
- Configuring IP Routing
- Introduction to IP routing on the Pipeline
- Managing the routing table
- Parameters that affect the routing table
- Static and dynamic routes
- Configuring static routes
- Specifying default routes on a per-user basis
- Enabling the Pipeline to use dynamic routing
- Route preferences
- Viewing the routing table
- Fields in the routing table
- Removing down routes to a host
- Identifying Temporary routes in the routing table
- Configuring IP routing connections
- Ascend Tunnel Management Protocol (ATMP)
- IP Address Management
- Connecting to a local IP network
- BOOTP Relay
- DHCP services
- Dial-in user DNS server assignments
- Local DNS host address table
- Network Address Translation (NAT) for a LAN
- Configuring IPX Routing
- How the Pipeline performs IPX routing
- Adding the Pipeline to the local IPX network
- Working with the RIP and SAP tables
- Configuring IPX routing connections
- Configuring the Pipeline as a Bridge
- Defining Filters and Firewalls
- Setting Up Pipeline Security
- Pipeline System Administration
- Pipeline 75 Voice Features
- IDSL Implementations
- APP Server utility
- About the APP Server utility
- APP Server installation and setup
- Configuring the Pipeline to use the APP server
- Using App Server with Axent SecureNet
- Creating banner text for the password prompt
- Installing and using the UNIX APP Server
- Installing and using the APP Server utility for DO...
- Installing and using the APP Server utility for Wi...
- Installing APP Server on a Macintosh
- Troubleshooting
- Upgrading system software
- What you need to upgrade system software
- Displaying the software load name
- The upgrade procedure
- Untitled
Defining Filters and Firewalls
Example filters
6-12 Preliminary January 30, 1998 Pipeline User’s Guide
The source and destination Port Cmp and Port # parameters specify whether
to compare the protocol ports, which identify the application running over
TCP/IP. The comparison may match a protocol port number that is less-than,
greater-than, equal, or not-equal.
8
Set the TCP Estab parameter.
The TCP Estab parameter can be set to match a packet only if a TCP session
is already established.
Example filters
This section provides a step-by-step examples of defining filters. It shows how to
specify both generic and IP filter conditions.
This section shows how to create Filter profiles. Some sites modify the
predefined call filters to make them more full-featured for the types of packets
commonly seen at that site. See “Working with predefined call filters” on page 6-
21 for details.
An example generic filter to handle AppleTalk broadcasts
This section shows how to define a generic data filter whose purpose is to prevent
local AppleTalk AEP and NBP traffic from going across the WAN. The data filter
first defines the types of packets that should not be filtered:
• AppleTalk Address Resolution Protocol (AARP) packets
• AppleTalk packets that are not addressed to the AppleTalk multicast address,
such as regular traffic related to an actual AppleTalk File Server connection
• All non-AppleTalk traffic
The filter then defines the packets that should be dropped:
• AppleTalk Echo Protocol (AEP)
• Name Binding Protocol (NBP)
To define a generic data filter:
1
Select an unnamed Filter profile in the Filters menu and press Enter.
For example, select 20-403.