Perle Systems P840 Pattern Filter Operators, Bridge Pattern Filtering, Protocol Discrimination

Page 47

Filtering

Pattern Filter Operators

The following operators are used in creating Pattern filters and will be discussed further in the following pages. For additional information refer to the octet locations diagrams at the back of this manual. Each octet location may contain a HEX value.

-

offset

Used in pattern filters to determine the starting position to start the pattern checking.

 

 

Example:

12-80

This filter pattern will match if the packet information starting at

 

 

 

 

the 12th octet equals the 80 of the filter pattern.

OR

Used in combination filters when one or the other conditions must be met.

 

 

Example:

10-2012-80

This filter pattern will match if the packet information starting at

 

 

 

 

the 10th octet equals the 20 of the filter pattern or if the packet

 

 

 

 

information starting at the 12th octet equals the 80 of the filter

 

 

 

 

pattern.

&

AND

Used in combination filters when one and the other conditions must be met.

 

 

Example:

10-20&12-80

This filter pattern will match if the packet information starting at

 

 

 

 

the 10th octet equals the 20 of the filter pattern and the packet

 

 

 

 

information starting at the 12th octet equals the 80 of the filter

 

 

 

 

pattern.

~

NOT

Used in pattern filters to indicate that all packets not matching the defined pattern will be filtered.

 

 

Example:

~12-80

This filter pattern will match if the packet information starting at

 

 

 

 

the 12th octet does not equal the 80 of the filter pattern.

( )

brackets

Used in pattern filters to separate portions of filter patterns for specific operators.

 

 

Example:

12-80&(14-2414-32)

This filter pattern will be checked in two operations. First the

 

 

 

 

section in brackets will be checked and then the results of the first

 

 

 

 

check will be used in the second check using the first portion of

 

 

 

 

the filter patter. If the packet information starting at the 14th octet

 

 

 

 

equals 24 or 32, and the information at the 12th octet equals 80, the

 

 

 

 

filter pattern will match.

@

Connect

Used in pattern filters to indicate that the filter will only be active when the remote site connection is

 

 

down.

 

 

 

 

Example:

@12-80

This filter pattern will match if the remote site connection is down

 

 

 

 

and the packet information starting at the 12th octet equals the 80

 

 

 

 

of the filter pattern.

Bridge Pattern Filtering

Protocol Discrimination

Protocol discrimination may be required to prevent or limit the protocols that may traverse a bridged Local Area Network.

47

Page 46 Page 48
Image 47
Page 46 Page 48
Contents Perle P840 P840 Router IntroductionProxy ARP ARP-Address Resolution ProtocolIP Routing and the P840 Router Complete IP Connection IP Header Details Quench Icmp MessagesUnreachable RedirectTime and Mask server Update MechanismRIP-Routing Information Protocol PingStation Address Learning Bridging and the P840 RouterInitial Bridging Process Aging Timer Aging Exception Filled Address TableAddress Purging Link Compression P840 Router Feature DefinitionsTelnet Typical Compression Ratios by File Type Multipoint WAN TopologiesBandwidth On Demand MultilinkTime of Day Connect Application Operating Software UpgradesCall Establishment Methods P840 Isdn Connection ManagementWide Area Network Topologies Supported Auto-Call Time-of-Day Connections Isdn Connection ManagementManual Call Address ConnectCombination Connection ProcessInteresting Traffic Idle TimerProtocol Awareness Suspension ProcessSuspended Server P840 Session Participation SpoofingSuspension of TCP/IP Sessions IP SpecificsTermination Process IP Address ConnectPinout Information Console ConnectorEvent logs Event LogsEvent Logs Event Logs Event Logs Event Logs Event Logs Alarm logs Event Logs Event Logs Event Logs Code Description Code Event Logs Event Logs Event Logs Event Logs Event Logs PPP Security logs Security MAC Address FilteringSecurity-Filter if Destination FilteringSecurity-Filter if Source Security-Forward if Destination Security-Forward if Source FilteringFiltering Protocol Discrimination Pattern Filter OperatorsBridge Pattern Filtering IP, and no more Protocol Type FieldInternet Protocol IP Filter all IP PacketsFiltering Filter all except TCP/IP Transport Control Protocol / Internet Protocol TCP/IPFilter only TCP/IP Filter all IP without TCP trafficEthernet Multicasting Bandwidth ConservationFilter all DEC Ethernet BroadcastingEthernet Station Addresses General RestrictionsInternet Addresses Mask would be 6-010203040506&12-0800&23-06 Example Mask CombinationsIP Router Pattern Filtering Frame Formats Ethernet Type Codes Octet Locations on an IP Routed TCP/IP Frame Octet Locations on a Bridged XNS Frame

P840 specifications

Perle Systems is renowned for its high-performance networking hardware, and the Perle P840 model exemplifies this reputation with its advanced features and technologies. Designed for small to medium-sized enterprises, the P840 serves as a versatile and reliable solution for connectivity needs.

One of the main features of the Perle P840 is its robust network performance, supporting both Ethernet and serial connectivity. With support for RS-232, RS-422, and RS-485 interfaces, the P840 enables seamless integration of legacy devices into modern network architectures, allowing businesses to leverage existing infrastructure without the need for extensive upgrades.

The P840 also boasts advanced security features to protect sensitive data during transmission. It supports SSL encryption and VPN capabilities, ensuring that data travels securely across the network. Additionally, it implements strong authentication protocols, providing organizations with peace of mind knowing that their communications are safeguarded against potential threats.

Another standout characteristic of the P840 is its flexibility in configuration. It offers multiple port configurations, allowing for customization based on specific user needs. With options for both managed and unmanaged modes, the device can easily adapt to various network environments. This flexibility makes it suitable for diverse applications, including industrial automation, process control, and telecommunications.

The Perle P840 is designed for durability and reliability, featuring a rugged enclosure that can withstand demanding environments. Its solid-state components reduce the risk of failure, contributing to increased uptime and lower maintenance costs. Furthermore, the compact design allows for easy installation in tight spaces, making it a practical choice for various deployment scenarios.

In terms of management and monitoring, the P840 includes an intuitive web-based interface, enabling administrators to configure settings and monitor network performance effortlessly. SNMP support further enhances management capabilities, allowing for integration into larger network management systems.

Overall, the Perle P840 stands out as a powerful solution for enterprises seeking seamless connectivity, robust security, and flexibility in configuration. Its combination of advanced features and durable design makes it an ideal choice for industries requiring reliable serial and network connectivity in challenging environments. With the P840, businesses can build a resilient networking infrastructure that supports their growing demands while safeguarding their critical data.
Top Page Image Contents