G.1.1 Examples
To pass any packet coming from the Class A 89.0.0.0 network you would enter:
SRC ADDR | SRC MASK |
89.0.0.0FF000000
The mask of FF00000 limits the comparison to the first 8 bits of the incoming address.
If a Class B address of 130.140 has a subnet with 8 bits to provide the network/subnet of 130.140.5, then to filter any packet from this subnet you would enter:
SRC ADDR | SRC MASK |
130.140.5.0 | FFFFFF00 |
If you wanted to filter a specific address on the Class B network/subnet with an address of 130.140.5.10 then you would enter:
SRC ADDR | SRC MASK |
130.140.5.10 | FFFFFFFF |
For the equipment at address 130.140.5.10 to talk to any address on the network/subnet of 130.140.6.0 then you would enter:
SRC ADDR | SRC MASK | DEST ADDR | DEST MASK |
130.140.5.10 | FFFFFFFF | 130.140.6.0 | FFFFFF00 |
For the equipment at address 130.140.5.10 to talk to any network you would enter:
SRC ADDR | SRC MASK | DEST ADDR | DEST MASK |
130.140.5.10 | FFFFFFFF | ALL |
|
G.2 PROTOCOL SELECTION
Protocols can be defined as TCP, UDP, ICMP or ALL
G.2.1 Examples
To stop all UDP traffic you would enter.
SRC ADDR | SRC MASK | DEST ADDR | DEST MASK | PROT | S.PRT | D.PRT | RSL |
ALL | ALL |
|
| UDP | ALL | ALL | FAIL |
In this case you would need a second line to pass other traffic.
SRC ADDR | SRC MASK | DEST ADDR | DEST MASK | PROT | S.PRT | D.PRT | RSL |
ALL | ALL |
|
| UDP | ALL | ALL | PAS |
G.3 Source and Destination Ports
Echo LANlink Router Option User Manual | Issue 1.0 04 December 1997 Page 53 of 59 |