Operation Manual
Vigor122 User’s Guide
117
number you can type is “0” to “12” (0 means “disable).
-l [VALUE] It means to setup Log Flag, e.g., -l 2
Type “0” to disable the log flag.
Type “1” to display the log of passed packet.
Type “2” to display the log of blocked packet.
Type “3” to display the log of non-matching packet.
- p [VALUE] It means to setup actions for packet not matching any rule, e.g., -p
1
Type “0” to let all the packets pass;
Type “1” to block all the packets.
E
E
x
x
a
a
m
m
p
p
l
l
e
e
> ipf set -c 1 #set call filter start from set 1
Setting saved.
> ipf set -v
Call Filter: Enable (Start Filter Set = 1)
Data Filter: Enable (Start Filter Set = 2)
Log Flag : None
Actions for packet not matching any rule:
Pass or Block : Pass
Content Management: None
Apply IP filter to VPN incoming packets : Disable
Accept large incoming fragmented UDP or ICMP packets: Enable
>
T
T
e
e
l
l
n
n
e
e
t
t
C
C
o
o
m
m
m
m
a
a
n
n
d
d
:
:
i
i
p
p
f
f
f
f
l
l
o
o
w
w
t
t
r
r
a
a
c
c
k
k
This command is used to set and view flowtrack sessions.
S
S
y
y
n
n
t
t
a
a
x
x
ipf flowtrack set [-r]
ipf flowtrack view [-f]
S
S
y
y
n
n
t
t
a
a
x
x
D
D
e
e
s
s
c
c
r
r
i
i
p
p
t
t
i
i
o
o
n
n
Parameter Description
-r It means to refresh the flowtrack.
-t [value] It means to specify a protocol (e.g., -t tcp).
Available settings include:
tcp
udp
icmp
-f It means to show the sessions state of flowtrack. If you do not
specify any IP address, then all the session state of flowtrack will be
displayed.
E
E
x
x
a
a
m
m
p
p
l
l
e
e