System information

Firewall/Packet Filtering on the OnBoard
58 AlterPath OnBoard Administrator’s Guide
Add Rule and Edit Rule Options
When you add or edit a rule you can define any of the options described in the
following table.
Table 1-25: Filter Options for Packet Filtering Rules
Filter Options Description
Protocol
You can select a protocol for filtering from one of the
following options:
•ALL
•TCP
UDP
•ICMP
•GRE
ESP
•AH
Source IP/mask
Destination IP/mask
A host IP address or subnetwork IP address in the form:
hostIPaddress or networkIPaddress/NN. If you specify a
source IP, incoming packets are filtered for the specified IP
address. If you specify a destination IP, outgoing packets
are filtered for the specified IP address.
Input or Output Interface
The input or output interface used by the incoming or
outgoing packet. Choices are:
Public 1 (eth0)
Public 2 (eth1)
Failover (bond0)
PCMCIA (eth2)
PCMCIA (eth3)
Any private port (priv0)
Fragments
The types of packets to be filtered:
All packets and fragments
Head fragments and unfragmented packets
Non-head fragments only