Vc/Remote Site Filters; Applying Filters Using Cli; Applying A Filter To An Interface Using Cli; Configuring A Filter For A Vc/Remote Site Using Cli - 3Com OfficeConnect Remote 812 Cli User's Manual

Release 2.0

Hide thumbs Also See for OfficeConnect Remote 812:

Cli user's manual (144 pages)

Getting started manual (66 pages)

Get started manual (58 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

page of 170

/ 170
Contents
Table of Contents
Bookmarks

Table of Contents

VC/Remote Site Filters

Applying Filters Using

CLI

Applying a Filter to an

Interface Using CLI

Configuring a Filter for a

VC/Remote Site Using

Most importantly, the router does not know which interface an outgoing

packet came in through. If a potential intruder forges a packet with a false

source address (in order to appear as a trusted host or network), there is no

way for an output filter to tell if that packet came in through the wrong

interface. An input filter, on the other hand, can filter out packets purporting

to be from networks that are actually connected to a different interface.

You can configure filters for a specific VC / remote site profile that controls access

to the network for that location. This filter is only applied for the duration of the

remote network connection. As with interface filters, a remote site filter can be

configured to apply to input or output data traffic. (Note that you can also assign

filters (input and output) to your VPN tunnel).

You can apply filters to interfaces and/or users using the CLI. If you modify a file,

you need to re-assign it to make the changes take effect immediately. Otherwise

the changes will not take effect until the protocol network (IP, IPX, or bridge) that

the filter affects goes down and comes back up. This occurs when a network is

disabled, the WAN connection goes down then up, or when the OCR 812 is

rebooted.

Do not apply a filter to more than one interface or VC / remote site profile. Also,

do not apply an input and an output filter to more than one Ethernet interface.

To configure an input or output filter on an interface, use the following CLI

commands:

set interface <interface name> input_filter <filter name>

set interface <interface name> output_filter <filter name>

Interface name is eth:1 for the Ethernet interface and atm:1 for the ATM

interface. For example, to apply an input filter to the ethernet interface: set

interface eth:1 input_filter filter.fil

When assigning the filter to the Ethernet interface, you must turn off filter access

by entering the CLI command set interface eth:1 filter_access off.

For more information about the filter access, refer to the Setting Filter Access

section below.

Do not apply a filter to more than one interface or VC / remote site profile. Also,

do not apply an input and an output filter to more than one Ethernet interface.

Do not apply a filter to more than one interface or VC/remote site profile.

To configure an input or output filter for a specific user, use the following

CLI

commands:

set vc <vc or remote site name>input_filter <filter_name>

set vc <vc or remote site name>output_filter <filter_name>

For example, to apply an output filter to a user: set vc corpoffice input_filter

filter.fil

Applying Filters Using CLI

6-57

Table of Contents

Vc/Remote Site Filters; Applying Filters Using Cli; Applying A Filter To An Interface Using Cli; Configuring A Filter For A Vc/Remote Site Using Cli - 3Com OfficeConnect Remote 812 Cli User's Manual

VC/Remote Site Filters

Applying Filters Using CLI

Related Manuals for 3Com OfficeConnect Remote 812

Related Content for 3Com OfficeConnect Remote 812

Table of Contents