Protocol Rules - 3Com OfficeConnect 3CP4144 Cli User's Manual

3com officeconnect 3cp4144: users guide

Hide thumbs Also See for OfficeConnect 3CP4144:

Get started manual (58 pages)

How to set up (4 pages)

Release note (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

page of 144

/ 144
Contents
Table of Contents
Bookmarks

Table of Contents

6-30

6: M

HAPTER

ANUAL

ETUP

IPX-SAP

BR-ETH

Protocol Rules

You can define protocol rules within each protocol section in the filter file. Protocol

rules determine which packets may and may not access the network. The rule

syntax is:

The line # range is 1-10. This means you can combine up to 10 rules to create a

filter for a specific protocol. Additionally, line number 999 is used for the DENY

verb.

The combination of keyword, operator, and value forms the condition which

(when combined with the verb) determines whether a packet is accepted or

rejected.

When a packet is filtered, the router parses each rule defined in the protocol

section sequentially according to the line number. Filtering is performed based on

the first match that occurs. If there is no match, by default the packet is accepted.

For this reason, you should order your protocol rules so that the rules you expect

to be most frequently matched are in the beginning of the section. This reduces

the amount of parsing time that occurs during filtering. The following table

describes each field used in the rule syntax:

Table 6-3 Protocol Rules

Field

Description

line #

Each rule must have a unique line number from 1-10 plus 999 for the DENY verb.

You must arrange rules in increasing order.

Verb

This field can be one of the following:

ACCEPT - Allow the packet access if the condition is met (use with DENY verb to

indicate reject all other packets).

REJECT - Do not allow the packet access if the condition is met.

AND - Logically use the AND condition with condition of the next rule to

determine if the packet is accepted or rejected. Both defined conditions must be

met.

Keyword

The keywords for all protocol, descriptions, corresponding operators and values.

Operator

Describes the relationship between the keyword and its value. The operator field

must be one of the following:

= Equal

!= Not equal

> Greater than

< Less than

>= Greater or Equal

<= Less or Equal

=> Generic

value

Contains a entity that is appropriate for the keyword.

The OR operation can be implemented by successive rules. For example, to accept

a packet if the source address is xxx, or the destination address is yyy, the

IPX SAP advertising filter section

Bridge protocol data filter

Table of Contents

This manual is also suitable for:

Officeconnect 812

Protocol Rules - 3Com OfficeConnect 3CP4144 Cli User's Manual

Protocol Rules

Related Manuals for 3Com OfficeConnect 3CP4144

Related Content for 3Com OfficeConnect 3CP4144

This manual is also suitable for:

Table of Contents