Manualshelf

User`s guide

ManualsBrandsCyclades ManualsNetworkingAlterPath OnBoard
111112113114115116117118119120
Introduction 67
Packet Filtering on the OnSite
You can flag any of the above elements with inverted so that the target action
is performed on packets that do not match any of the criteria specified in that
line. For example, if you select DROP as the target action, specify “Inverted”
for a source IP address, and do not specify any other criteria in the rule, any
packets arriving from any other source IP address than the one specified are
dropped.
Numeric Protocol Options
If you select Numeric as the protocol when specifying a rule, you need to
specify the desired number.
Protocol
You can select a protocol for filtering from one of the
following options:
•ALL
“Numeric Protocol Options” on page 67
“TCP Protocol Options” on page 68
“UDP Protocol Options” on page 68
“ICMP Protocol Options” on page 68
Input Interface
The input interface (ethN) used by the incoming packet.
Output Interface
The output interface (ethN) used by the outgoing packet.
Fragments
The types of packets to be filtered:
All packets
2nd, 3rd... fragmented packets
Non-fragmented and 1st fragmented packets
Table 1-31: Filter Options for Packet Filtering Rules
Filter Options Description