System information
Introduction 59
Firewall/Packet Filtering on the OnBoard
Any of the options in Table 1-25 can be given the inverted flag, so that the
target action is performed on packets that do not match any of the specified
criteria. For example, if DROP is the target action, if “Inverted” is specified
for a source IP address, and if no other criteria are specified in the rule, any
packets arriving from any other source IP address are dropped.
Tasks for Administering Packet Filtering
Administrators can do the following tasks to specify packet filtering:
• Add new rules for existing chains
• Edit or delete administrator-added rules
The following table lists the tasks related to configuring packet filtering and
where the Web Manager procedures for performing the tasks are described.
The cycli iptables command can also be used for configuration of new
rules for built-in chains.
Rule target
• Accept
•Drop
•Reject
Table 1-26: Tasks for Configuring Packet Filtering (Firewall) Rules
Task Where Documented
Add a new rule, edit or delete a customer-
added rule
“Configuring Firewall Rules for OnBoard
Packet Filtering” on page 268
“To Add a New Packet Filtering
(Firewall) Rule” on page 270
“To Edit an Administrator-added Packet
Filtering (Firewall) Rule” on page 270
Table 1-25: Filter Options for Packet Filtering Rules (Continued)
Filter Options Description