Generic Filter Rule; Applying The Rules Using Cli - 3Com OfficeConnect Remote 812 Cli User's Manual

Release 2.0

Hide thumbs Also See for OfficeConnect Remote 812:

Cli user's manual (144 pages)

Getting started manual (66 pages)

Get started manual (58 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

page of 170

/ 170
Contents
Table of Contents
Bookmarks

Table of Contents

Generic Filter Rule

Applying the Rules

Using CLI

Table 6-6 Protocol Keywords

Protocol

Section

Keyword

src-addr

dst-addr

tcp-src-port

tcp-dst-port

udp-src-port

udp-dst-port

protocol

generic

IP-RIP

network

IPX

src-net

dst-net

src-host

dst-host

src-socket

dst-socket

generic

IPX-RIP

network

IPX-SAP

network

node

server

service-type

socket

BR-ETH

src-addr

dst-addr

generic

The syntax for generic filters is slightly different than that for other filters:

<line #> <verb> GENERIC => ORIGIN = <FRAME > DATA>/OFFSET = <# of bytes>/

LENGTH = <# of bytes>/MASK = < 0x Mask>/VALUE = <0x value>

ORIGIN - The location in the packet to start the offset count. This location can

be at byte 0 (FRAME) or at the start of the protocol data (DATA).

OFFSET - The number of bytes from the origin to skip before comparing the

value to the packet contents.

LENGTH - The number of bytes in the packet to compare to the value.

MASK - The mask to logically "and" with the packet contents before

comparing with the value (hex).

VALUE - The value (hex) to compare to the packet contents.

For example, a generic bridge filter to prevent all IP packets from being bridged is:

BR-ETH:

1 reject generic=>origin=frame/offset=12/length=2/mask=0xFFFF/value=0x0800;

The sections that follow provide detailed information and examples for creating

specific filters based on protocol.

Creating Filters Using Command Line Interface

Operators

Description and Value Range

=, !=

Source IP Address (ddd.ddd.ddd.ddd/mask)

=, !=

Destination IP Address (ddd.ddd.ddd.ddd/mask)

all

TCP source port (1 - 65535)

all

TCP destination port (1 - 65535)

all

UDP source port (1-65535)

all

UDP destination port (1-65535)

=, !=

IP protocol (UDP, TCP, ICMP)

Generic filter

=, !=

IP network number (ddd.ddd.ddd.ddd/mask)

=, !=

Source IPX network (xx-xx-xx-xx)

=, !=

Destination IPX network (xx-xx-xx-xx)

=, !=

Source IPX host node address (xx-xx-xx-xx-xx-xx)

=, !=

Destination IPX host node address (xx-xx-xx-xx-xx-xx)

all

Source IPX socket (0x1 - 0xFFFF)

all

Destination IPX socket (0x1 - 0xFFFF)

Generic Filter

=, !=

IPX network (xx-xx-xx-xx)

=, !=

IPX network (xx-xx-xx-xx)

=, !=

IPX node (xx-xx-xx-xx-xx-xx)

=, !=

Server name (character string to 32 characters)

=, !=

Service type (0x0 - 0xFFFF)

all

Socket (0x1 - 0xFFFF)

=, !=

Source MAC address (xx-xx-xx-xx-xx-xx)

=, !=

Destination MAC address (xx-xx-xx-xx-xx-xx)

Generic filter

6-51

Table of Contents

Generic Filter Rule; Applying The Rules Using Cli - 3Com OfficeConnect Remote 812 Cli User's Manual

Generic Filter Rule

Related Manuals for 3Com OfficeConnect Remote 812

Related Content for 3Com OfficeConnect Remote 812

Table of Contents