User`s guide
Table Of Contents
- Ascend Customer Service
- How to use this guide
- What you should know
- Documentation conventions
- How to use the on-board software
- Manual set
- Configuring WAN Connections
- Configuring IP Routing
- Introduction to IP routing on the Pipeline
- Managing the routing table
- Parameters that affect the routing table
- Static and dynamic routes
- Configuring static routes
- Specifying default routes on a per-user basis
- Enabling the Pipeline to use dynamic routing
- Route preferences
- Viewing the routing table
- Fields in the routing table
- Removing down routes to a host
- Identifying Temporary routes in the routing table
- Configuring IP routing connections
- Ascend Tunnel Management Protocol (ATMP)
- IP Address Management
- Connecting to a local IP network
- BOOTP Relay
- DHCP services
- Dial-in user DNS server assignments
- Local DNS host address table
- Network Address Translation (NAT) for a LAN
- Configuring IPX Routing
- How the Pipeline performs IPX routing
- Adding the Pipeline to the local IPX network
- Working with the RIP and SAP tables
- Configuring IPX routing connections
- Configuring the Pipeline as a Bridge
- Defining Filters and Firewalls
- Setting Up Pipeline Security
- Pipeline System Administration
- Pipeline 75 Voice Features
- IDSL Implementations
- APP Server utility
- About the APP Server utility
- APP Server installation and setup
- Configuring the Pipeline to use the APP server
- Using App Server with Axent SecureNet
- Creating banner text for the password prompt
- Installing and using the UNIX APP Server
- Installing and using the APP Server utility for DO...
- Installing and using the APP Server utility for Wi...
- Installing APP Server on a Macintosh
- Troubleshooting
- Upgrading system software
- What you need to upgrade system software
- Displaying the software load name
- The upgrade procedure
- Untitled
Defining Filters and Firewalls
Working with predefined call filters
Pipeline User’s Guide Preliminary January 30, 1998 6-21
The second Input filter specifies TCP packets, Protocol=6, from any address and
to any address and forwards them if the destination port is greater than the source
port. For example, Telnet requests go out on port 23 and responses come back on
some random port greater than port 1023. So, this filter defines packets coming
back to respond to a user's request to Telnet, or to other requests using the TCP
protocol, to a remote host.
The third Input filter specifies UDP packets, Protocol=17, with exactly the same
situation as described above for Telnet. For example, a RIP packet is sent out as a
UDP packet to destination port 520. The response to this request also is sent to a
random destination port greater than 1023.
Finally, the fourth Input filter specifies unrestricted pings and traceroutes. ICMP
does not use ports like TCP and UDP, so a port comparison is unnecessary.
Working with predefined call filters
The Pipeline ships with three predefined Filter profiles, one for each commonly
used protocol suite.
• IP Call, for IP connections
• NetWare Call, for IPX connections
• AppleTalk Call, for bridged AppleTalk connections
These predefined filters are intended as call filters, to help keep connectivity
costs down. They provide a base that you can build on to fine-tune how the
Pipeline handles routine traffic on your network.
Note:
You can modify the predefined Filter profiles to make them more full-
featured for the types of packets commonly seen on your network that you want
to prevent from initiating or maintaining connections.
NetWare Call filter
The predefined NetWare Call filter is designed to prevent Service Advertising
Protocol (SAP) packets originating on the local IPX network from resetting the
idle timer or initiating a call.