User Manual
Table Of Contents
- Contents
- Introduction
- Installation & Basic Configuration
- Status Information
- Advanced Configuration
- Configuring the AP-600 Using the HTTP Interface
- System
- Network
- Interfaces
- Management
- Filtering
- Ethernet Protocol
- Static MAC
- Static MAC Filter Examples
- Prevent Two Specific Devices from Communicating
- Prevent Multiple Wireless Devices From Communicating With a Single Wired Device
- Prevent All Wireless Devices From Communicating With a Single Wired Device
- Prevent A Wireless Device From Communicating With the Wired Network
- Prevent Messages Destined for a Specific Multicast Group from Being Forwarded to the Wireless LAN
- Static MAC Filter Examples
- Advanced
- TCP/UDP Port
- Alarms
- Bridge
- Security
- RADIUS
- Monitor Information
- Commands
- Troubleshooting
- Troubleshooting Concepts
- Symptoms and Solutions
- Recovery Procedures
- System Alarms (Traps)
- Related Applications
- Command Line Interface (CLI)
- General Notes
- Command Line Interface (CLI) Variations
- CLI Command Types
- Using Tables & User Strings
- Configuring the AP-600 using CLI commands
- Set Basic Configuration Parameters using CLI Commands
- Other Network Settings
- Configure the AP-600 as a DHCP Server
- Configure the DNS Client
- Maintain Client Connections using Link Integrity
- Change your Wireless Interface Settings
- Autochannel Select (ACS)
- [Device Name]>set wif 3 autochannel
[Device Name]>reboot 0 - Enable 2X Turbo Mode (AP-600a Only)
- [Device Name]>set wif 3 turbo
[Device Name]>reboot 0 - Enable/Disable Interference Robustness (AP-600b Only)
- Enable/Disable Closed System (AP-600b Only)
- Enable/Disable Load Balancing (AP-600b Only)
- Enable/Disable Medium Density Distribution (AP-600b Only)
- Set the Distance Between APs (AP-600b Only)
- Set the Multicast Rate (AP-600b Only)
- Set Ethernet Speed and Transmission Mode
- Set Interface Management Services
- Configure Syslog
- Configure Intra BSS
- Configure MAC Access Control
- Configure 802.1x Authentication
- Set RADIUS Parameters
- CLI Monitoring Parameters
- Parameter Tables
- ASCII Character Chart
- Specifications
- Technical Support
Advanced Configuration
54
TCP/UDP Port
Port-based filtering enables you to control wireless user access to network services by selectively blocking TCP/UDP
protocols through the AP-600. A user specifies a Protocol Name, Port Number, Port Type (TCP, UDP, or TCP/UDP),
and filtering interfaces (Wireless only, Ethernet only, all interfaces, or no interfaces) in order to block access to
services, such as Telnet and FTP, and traffic, such as NETBIOS and HTTP.
For example, an AP-600 with the following configuration would discard frames received on its Wireless radio with a
UDP destination port number of 137, effectively blocking NETBIOS Name Service packets.
Adding TCP/UDP Port Filters
1. Place a check mark in the box labeled Enable TCP/UDP Port Filtering.
2. Click Add under the
TCP/UDP Port Filter Table
heading.
Figure 4-13 Adding a New TCP/UDP Port Filter Entry
3. In the
TCP/UDP Port Filter Table
, enter the Protocol Names to filter.
4. Set the destination Port Number (a value between 0 and 65535) to filter. See the IANA Web site at
http://www.iana.org/assignments/port-numbers for a list of assigned port numbers and their descriptions.
5. Set the Port Type for the protocol: TCP, UDP, or both (TCP/UDP).
6. Set the Interface to filter:
• Wireless
• Ethernet
• All interfaces
• No interfaces
7. Click OK.
127(
127(127(
127(
Filters are enabled by default. Packets that the AP-600 receives on the specified interface(s) with the specified
TCP/UDP destination port, are discarded.
Editing TCP/UDP Port Filters
1. Click Edit under the
TCP/UDP Port Filter Table
heading.
2. Make any changes to the Protocol Name or Port Number for a specific entry, if necessary.
3. In the row that defines the port, set the Status to Enable, Disable, or Delete, as appropriate.
4. Select OK
.
Protocol Type
(TCP/UDP)
Destination
Port Number
Protocol Name Interface Status
(Enable/Disable)
UDP 137 NETBIOS
Name Service
Wireless Enable