Manualshelf

User manual

ManualsBrandsComtrend Corporation ManualsComputer equipmentCT-5361T
919293949596979899100
95
Example 2:
Filter Name : In_Filter2
Protocol : UDP
Source Address : 210.168.219.45
Source Subnet Mask : 255.255.0.0
Source Port : 5060:6060
Destination Address : 192.168.1.45
Destination Subnet Mask : 255.255.255.0
Destination Port : 6060:7070
This rule will ACCEPT all UDP packets coming from WAN interface
mer_0_35/nas_0_35 with IP Address/Subnet Mask 210.168.219.45/16 and a
source port in the range of 5060 to 6060, destined to 192.168.1.45/24 and a
destination port in the range of 6060 to 7070. All other incoming packets on this
interface are DROPPED.
MAC Layer Filtering: These rules help in the filtering of traffic at the Layer 2. MAC
Filtering is only effective on ATM PVCs configured in Bridge mode. After a Bridge
mode PVC is created, navigate to Advanced Setup - Security - MAC Filtering.
Global Policy: When set to Forwarded the default filter behavior is to Forward all
MAC layer frames except those explicitly stated in the rules. Setting it to Blocked
changes the default filter behavior to Drop all MAC layer frames except those
explicitly stated in the rules.
Protocol Type: Either PPPoE, IPv4, IPv6, AppleTalk, IPX, NetBEUI, IGMP.
Destination MAC Address: Of the form, XX:XX:XX:XX:XX:XX. Frames with this
particular destination address will be Forwarded/Dropped depending on whether
the Global Policy is Blocked/Forwarded.
Source MAC Address: Of the form, XX:XX:XX:XX:XX:XX. Frames with this
particular source address will be Forwarded/Dropped depending on whether the
Global Policy is Blocked/Forwarded.
Frame Direction: (User must select interface on which this rule is applied)
LAN <=> WAN --> All Frames coming/going to/from LAN or to/from WAN.
WAN => LAN --> All Frames coming from WAN destined to LAN.
LAN => WAN --> All Frames coming from LAN destined to WAN
Example 1:
Global Policy: Forwarded
Protocol Type: PPPoE
Destination MAC Address: 00:12:34:56:78:90
Source MAC Address: NA
Frame Direction: LAN => WAN
WAN Interface Selected: br_0_34/nas_0_34
Addition of this rule drops all PPPoE frames going from LAN-side to WAN-side with a
Destination MAC Address of 00:12:34:56:78:90 irrespective of its Source MAC
Address on the br_0_34 WAN interface. All other frames on this interface are
forwarded.