Download Print this page

Figure 1 Packet Filtering Configuration Example - Zte ZXR10 8900 Series User Manual

10g routing switch

Hide thumbs Also See for ZXR10 8900 Series:

User manual (186 pages)

Command manual (177 pages)

Command reference manual (147 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

page of 147

/ 147
Contents
Table of Contents
Bookmarks

Table of Contents

ZXR10 8900 Series User Manual (FW Volume)

Confidential and Proprietary Information of ZTE CORPORATION

1 P

IGURE

ACKET

ILTERING

Configuration Points:

�

Specifying server host address;

�

Configuring default packet block policy

�

Configuring packet block policy;

1. To configure default packet block policy——permit any packets

to pass through FW, execute the following command:

ZXR10_FW #pf rule set default action accept

log yes

2. To add host doc_server, execute the following command:

ZXR10_FW #define host add name doc_server

ipaddr 192.168.83.234

3. To add area_vlan3 (setting gei_2/3 to be in vlan 3; it is the in-

terface connecting to router), execute the following command:

ZXR10_FW #define area add name area_vlan3

access off attribute gei_2/3

4. To configure packet filtering rule: forbid the host whose MAC

address is 00:50:04:C3:B0:31 to access document server, ex-

ecute the following command:

ZXR10_FW #pf rule add smac 00:50:04:C3:B0:31

area area_vlan2 dip doc_server dport 8000 action reject

ONFIGURATION

XAMPLE

Table of Contents

Figure 1 Packet Filtering Configuration Example - Zte ZXR10 8900 Series User Manual

Related Manuals for Zte ZXR10 8900 Series

Related Content for Zte ZXR10 8900 Series

Table of Contents