Avaya Configuring Traffic Filters and Protocol Prioritization Uživatelský manuál Strana 174
- Strana / 184
- Tabulka s obsahem
- KNIHY
Hodnocené. / 5. Na základě hodnocení zákazníků
Configuring Traffic Filters and Protocol Prioritization
B-12
308645-14.00 Rev 00
Using a Drop-All Filter As a Firewall
If your filtering strategy involves forwarding most traffic and dropping only
specified packets, you need only configure filters with a drop action (Drop filters)
for the traffic you want the router to reject.
If your strategy involves blocking most traffic and accepting only specified
packets, begin by defining filters to accept specified packets (Accept filters). Then,
add a filter on the interface to drop all packets (a Drop-all filter).
A Drop-all filter describes the broadest range of packets you want to block from
an interface. To ensure that all unwanted traffic is dropped, configure the Drop-all
filter to contain:
• Criteria that appears in every packet of the protocol you want to filter
• The maximum value of the range
• The minimum value of the range
With a Drop-all filter, higher-precedence Accept filters create exceptions (or
“holes”) in the drop-all range. Since the highest-precedence filter in a given
address range determines the result of combined filtering within that range, the
router will process packets that match the Accept filters. However, the Drop-all
filter ensures that the router rejects all other traffic.
For example, to configure a circuit that only accepts IP traffic addressed for
destination address 192.32.28.55, apply a Drop-all filter and one Accept filter, as
follows:
See “Changing Inbound Traffic Filter Precedence” on page 6-18” (inbound traffic
filters) or “Changing Outbound Traffic Filter Precedence” on page 7-21 (outbound
traffic filters) for information about using the Configuration Manager to change
filter precedence after filters have been applied to an interface.
Filter Action Rule Number Start of Range End of Range
Accept 1 (highest precedence) 192.32.28.55 192.32.28.55
Drop 2 (lower precedence) 0.0.0.0.0 255.255.255.255
- Protocol Prioritization 1
- Trademarks 2
- Restricted Rights Legend 2
- Statement of Conditions 2
- Contents 5
- 308645-14.00 Rev 00 10
- Before You Begin 15
- Text Conventions 16
- Acronyms 17
- Hard-Copy Technical Manuals 20
- How to Get Help 20
- Chapter 1 21
- Using Traffic Filters 21
- Inbound Traffic Filters 22
- Outbound Traffic Filters 23
- Filtering Strategies 24
- Combine Filters 25
- Build a Firewall 25
- Traffic Filter Components 26
- Predefined Criteria 28
- User-Defined Criteria 30
- Using Filter Templates 33
- Chapter 2 35
- Priority Queuing 36
- The Dequeuing Process 37
- Tuning Concepts 45
- Queue Size Example 47
- Reconfiguring Queue Size 47
- Examples 48
- Chapter 3 51
- Ethernet Header 52
- IEEE 802.2 LLC Header 52
- header 53
- Transparent Bridge Actions 54
- Predefined SRB Criteria 55
- User-Defined SRB Criteria 56
- SRB Actions 56
- Predefined DECnet Criteria 57
- User-Defined DECnet Criteria 57
- DECnet Actions 57
- DLSw Criteria and Actions 58
- IP Criteria and Actions 59
- IP Actions 60
- IPX Criteria and Actions 61
- LLC2 Criteria and Actions 62
- OSI Criteria and Actions 63
- VINES Criteria and Actions 64
- XNS Criteria and Actions 65
- User-Defined XNS Criteria 66
- XNS Actions 66
- Chapter 4 67
- Selecting Predefined Criteria 68
- Traffic Filters 69
- Predefined IP Criteria 71
- Data Link Reference Points 73
- IP Reference Points 75
- Selecting Actions 76
- Prioritizing Actions 77
- Dial Service Actions 77
- Chapter 5 79
- Specifying MAC Address Ranges 80
- SRB Functional MAC Addresses 81
- Table 5-3. SAP Codes 82
- Table 5-4. Frame Relay NLPIDs 83
- Table 5-5. PPP Protocol IDs 83
- Table 5-7 84
- Chapter 6 89
- Chapter 7 109
- Creating a Template 112
- (continued) 113
- (continued) 115
- Customizing Templates 117
- Drop_Telnet_S42 121
- SRB_DSAP_hiQ 121
- Chapter 8 133
- Configuring IP Inbound 133
- Traffic Filters Using the BCC 133
- IP Traffic Filter Templates 134
- IP Inbound Traffic Filters 135
- Filter Precedence 136
- Filter Criteria and Actions 137
- <name> 139
- Caution: 140
- Templates 141
- Criteria 142
- Example - Source TCP Port 144
- Example - Source UDP Port 145
- <list_of_values> 147
- <ip_address> 149
- <ip_address> 149
- Specifying the Log Action 151
- Configuration Examples 152
- Appendix A 155
- Appendix B 163
- TCP and UDP ports: 164
- S41_accepted 165
- Length Range 168
- Configuring DLSw 171
- Services 171
- Implementation Notes 173
Související produkty a manuály pro Software Avaya Configuring Traffic Filters and Protocol Prioritization
Software Avaya Call Center Uživatelský manuál
(204 stránky)
(204 stránky)
Software Avaya QoS Manager 2.0 Uživatelská příručka
(65 stránky)
(65 stránky)
Software Avaya BCM50 2.0 Uživatelský manuál
(352 stránky)
(352 stránky)
Software Avaya RMON2 Uživatelský manuál
(110 stránky)
(110 stránky)
Software Avaya BCM 2.0 FAX Uživatelský manuál
(60 stránky)
(60 stránky)
© 2020, manymanuals.cz. Všechna práva vyhrazena. | 0.031 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentáře k této Příručce