Table of Contents
Advertisement
Chapter 6: Destination Groups
A destination group is a named set of rules which can be used in forwarding rules to define where a
UDP datagram will be forwarded. Each individual rule in a destination group is comprised of a Ranger
Gateway or Data Diode and the ultimate destination of the UDP datagram. Destination groups provide a
mechanism to improve the organization of forwarding rules by grouping all rules that are configured
with the same Ranger Gateways and final destinations together. This allows for the creation and
management of fewer Forwarding Rules.
For example, if a ZoneRanger was joined to three Ranger Gateways (RG1, RG2, RG3) that were used to
forward syslog messages to three management applications (appl, app2, app3). If there were also five
specific syslog filters configured on the ZoneRanger to process syslog messages and forward those
messages to each of the management applications, that would require the creation of 15 forwarding
rules.
Forwarding Rules
– RG1
– RG1
– RG1
– RG1
– RG1
– RG2
– RG2
– ...
– RG3
With destination groups, a single destination group (DG1) could be created with rules for each Ranger
Gateway and management application as the destination. Then only 5 forwarding rules would need to
be created for the syslog messages.
Destination Group (DG1)
– RG1
– RG2
– RG3
Forwarding Rules
– DG1
– DG1
– DG1
– DG1
– DG1
ZoneRanger 5.5 User's Guide
app1
syslog rule 1
app1
syslog rule 2
app1
syslog rule 3
app1
syslog rule 4
app1
syslog rule 5
app2
syslog rule 1
app2
syslog rule 2
app3
syslog rule 5
app1
app2
app3
syslog rule 1
syslog rule 2
syslog rule 3
syslog rule 4
syslog rule 5
22
Hide quick links:
Advertisement
Table of Contents
