Table of Contents
Advertisement
Example:
portion of the network and wants to determine the specific sources of the ICMP messages. The
administrator uses the Command Line Interface (CLI) to create and apply the following filter:
>> # /cfg/slb/filt 15
>> Filter 15# sip any
>> Filter 15# dip any
>> Filter 15# action allow
>> Filter 15# name allow matching traffic (Provide a descriptive name for the
>> Filter 15# proto icmp
>> Filter 15# ena
>> Filter 15# adv
>> Filter 15 Advanced# /cfg/slb/port 7
>> SLB port 7# add 15
>> SLB port 7# filt ena
>> SLB port 7# apply
>> SLB port 7# save
When applied to one or more switch ports, this simple filter rule will produce log messages
that show when the filter is triggered, and what the IP source and destination addresses were
for the ICMP frames traversing those ports.
Example:
IP address, and destination IP address:
slb: filter 15 fired on port 7, 206.118.93.110 -> 20.10.1.10
212777-A, February 2002
A network administrator has noticed a significant number of ICMP frames on one
/l
og enable
Filter log message output is shown below, displaying the filter number, port, source
Web OS 10.0 Application Guide
(Select filter 15)
(From any source IP address)
(To any destination IP address)
(Allows matching traffic to pass)
filter)
(For the ICMP protocol)
(Enable the filter)
(Log matching traffic to syslog)
(Select a switch port to filter)
(Add the filter to the switch port)
(Enable filtering on the switch port)
(Apply the configuration changes)
(Save the configuration changes)
Chapter 7: Filtering
n
177
Advertisement
Table of Contents
