Netopia R2020 User Reference Manual page 124

9-22 User's Reference Guide
A A A A T T T T M M M M P P P P E E E E x x x x a a a a m m m m p p p p l l l l e e e e
To enable a firewall to allow ATMP traffic, you must provision the firewall to allow inbound and outbound UDP
packets specifically destined for port 5150. The source port may be dynamic, so often it is not useful to apply
a compare function on this portion of the control/negotiation packets. You must also set the firewall to allow
inbound and outbound GRE packets (Protocol 47, Internet Assigned Numbers Document, RFC 1700), enabling
transport of the tunnel payload.
From the Main Menu navigate to Display/Change IP Filter Set, and from the pop-up menu select Basic Firewall.
Main
Menu Configuration
Select Display/Change Input Filter.
Display/Change Input Filter screen
+-#----Source IP Addr----Dest IP Addr------Proto-Src.Port-D.Port--On?-Fwd-+
+-------------------------------------------------------------------------+
| 1 0.0.0.0
| 2 0.0.0.0
|
For Input Filter 1 set the Destination Port information as shown below.
Enabled:
Forward:
Source IP Address:
Source IP Address Mask:
Dest. IP Address:
Dest. IP Address Mask:
Protocol Type:
Source Port Compare...
Source Port ID:
Dest. Port Compare...
Dest. Port ID:
Established TCP Conns. Only:
For Input Filter 2 set the Protocol Type to allow GRE as shown below.
System Filter
Sets
0.0.0.0
0.0.0.0
Change Input Filter 1
IP Filter Display/Change
Sets IP Filter Set
UDP NC =5150
GRE -- --
Yes
Yes
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
TCP
No Compare
0
Equal
1723
No
Basic
Firewall
Yes Yes |
Yes Yes |
|