Manuals / Compatible Systems / Computer Equipment / Network Router

Compatible Systems 5.4 manual IPX Filtering 201, IPX Packet Filter Rule Notification

Models: 5.4

1 313
Download 313 pages 60.17 Kb
Page 207
Image 207

Chapter 12 - IPX Filtering

201

 

 

source and destination sockets should be used to implicitly filter the packet type. NetBIOS propagate packets (type 14h) are an exception to this rule.

srcnet <operator> <network number> This option allows filtering of the source network number contained in the packet. The number is specified in hex. The keyword all may be used to specify all network number values.

dstnet <operator> <network number> This option allows filtering of the destination network number contained in the packet. The number is spec- ified in hex. The keyword all may be used to specify all network number values.

srcskt <operator> <socket number> This rule allows filtering of the source socket contained in the packet. The number is specified in hex.

The following keywords may be used for well known socket values: NCP(0451h), SAP(0452h), RIP(0453h), or DIAG(0456h). The keyword all may be used to specify all socket numbers.

dstskt <operator> <socket number> This rule allows filtering of the destination socket contained in the packet. The number is specified in hex. The keywords listed above for srcskt may also be used. The keyword all may be used to specify all socket numbers.

srcnode <operator> <node address> This rule allows filtering of the source node address contained in the packet. The operator in this option can only be “equality” or “inequality.”

The node address parameter is the IPX server node number specified as an Ethernet address. An Ethernet address is specified as six hexadecimal octets separated by dots or colons (e.g. 0.0.A5.0.0.1 or 0:0:A5:0:0:1).

The keyword all may be used to specify all node values.

dstnode <operator> <node address> This rule allows filtering of the destination node address contained in the packet. The operator in this option can only be “equality” or “inequality.” The address parameter should be entered as shown above for srcnode. The keyword all may also be used.

IPX Packet Filter Rule Notification

Filter rule matches can optionally cause a log message to be sent. By default, no logging of matches is performed. See the section on the Logging Config- uration Dialog Box of this manual for more information.

log The log keyword causes the device to send information about the packet to syslog when the condition of the rule is met.

Page 206 Page 208
Page 207
Image 207
Compatible Systems 5.4 manual IPX Filtering 201, IPX Packet Filter Rule Notification
Page 206 Page 208