Table of Contents
Advertisement
Web OS 10.0 Application Guide
5.
Create a filter that will allow local clients to browse the Web.
The filter must recognize and allow TCP traffic to reach the local client destination IP addresses
if traffic originates from any HTTP source port:
>> Filter 3# ../filt 4
>> Filter 4# sip any
>> Filter 4# dip 205.177.15.0
>> Filter 4# dmask 255.255.255.0
>> Filter 4# proto tcp
>> Filter 4# sport http
>> Filter 4# dport any
>> Filter 4# action allow
>> Filter 4# name allow clients Web browse (Provide a descriptive name for the
>> Filter 4# ena
6.
Create a filter that will allow local clients to Telnet anywhere outside the local intranet.
The filter must recognize and allow TCP traffic to reach the local client destination IP
addresses if originating from a Telnet source port:
>> Filter 4# ../filt 5
>> Filter 5# sip any
>> Filter 5# dip 205.177.15.0
>> Filter 5# dmask 255.255.255.0
>> Filter 5# proto tcp
>> Filter 5# sport telnet
>> Filter 5# dport any
>> Filter 5# action allow
>> Filter 5# ena
7.
Create a series of filters to allow Domain Name System (DNS) traffic.
DNS traffic requires four filters; one pair is needed for UDP traffic (incoming and outgoing)
and another pair for TCP traffic (incoming and outgoing).
n
188
Chapter 7: Filtering
(Select the menu for Filter 4)
(From any source IP address)
(To base local network dest. address)
(For entire subnet range)
(For TCP protocol traffic)
(From any source HTTP port)
(To any destination port)
(Allow matching traffic to pass)
filter)
(Enable the filter)
(Select the menu for Filter 5)
(From any source IP address)
(To base local network dest. address)
(For entire subnet range)
(For TCP protocol traffic)
(From a Telnet port)
(To any destination port)
(Allow matching traffic to pass)
(Enable the filter)
212777-A, February 2002
Advertisement
Table of Contents
