M2M IDG500AM-0T001 User Manual page 143

M2M Cellular Gateway
administrator wants to deny only specific packets from going through, he can use the
"Packet Filters" function by defining the black list to carry out to meet the requirement.
It is contrasting to above diagram.
Scenario Description
To only allow dedicated packets that match to one packet filtering rule to flow through
the gateway and block other packets that are not defined in the "Packet Filter Rule List"
entry.
Parameter Setup Example
Following tables list the parameter configuration as an example for the gateway in
above diagram with "Packet Filters" enabling.
Use default value for those parameters that are not mentioned in the tables.
Configuration Path
Packet Filters
Black List / White List
Configuration Path
ID
Rule Name
Source IP
Destination IP
Destination Port
Protocol
Rule
Scenario Operation Procedure
In above diagram, the Gateway is the gateway of Network‐A and the subnet of its
Intranet is 10.0.75.0/24. The gateway has the IP address of 10.0.75.2 for LAN interface,
118.18.81.33 for WAN‐1 interface. It serves as a NAT router.
Enable the packet filter function and specify the "Packet Filter Rule List" is a white list
and configure two packet filtering rules for the gateway. Create one rule to allow HTTP
packets and the other rule to allow HTTPS packets to pass through the gateway.
System will allow only HTTP and HTTPS packet to pass through the gateway for those
hosts in the Intranet and their IP addresses are in the range from .200 to .250.
Index skipping is used to reserve slots for new function insertion, when required.
[Packet Filters]‐[Configuration]
■ Enable
Deny all to pass except those match the following rules.
[Packet Filters]‐[Packet Filter Rule List]
1
Access 80
IP Range: 10.0.75.200 ~ 10.0.75.250
Specific IP Address: 0.0.0.0
User‐defined Service: 80 ~ 80
TCP
■ Enable
2
Access 443
IP Range: 10.0.75.200 ~ 10.0.75.250
Specific IP Address: 0.0.0.0
User‐defined Service: 443 ~ 443
TCP
■ Enable
143