Virtual Private Networks (VPNs)
Change Output Filter 2
Enabled: | Yes |
Forward: | Yes |
Call Placement/Idle Reset: | No Change |
Force Routing: | No |
Source IP Address: | 0.0.0.0 |
Source IP Address Mask: | 0.0.0.0 |
Dest. IP Address: | 0.0.0.0 |
Dest. IP Address Mask: | 0.0.0.0 |
TOS: | 0 |
TOS Mask: | 0 |
Protocol Type: | GRE |
Return/Enter accepts * Tab toggles * ESC cancels.
Enter the packet specific information for this filter.
ATMP example
To enable a firewall to allow ATMP traffic, you must provision the firewall to allow inbound and outbound UDP packets specifically destined for port 5150. The source port may be dynamic, so often it is not useful to apply a compare function on this portion of the control/negotiation packets. You must also set the firewall to allow inbound and outbound GRE packets (Protocol 47, Internet Assigned Numbers Document, RFC 1700), enabling transport of the tunnel payload.
From the Main Menu navigate to Display/Change IP Filter Set, and from the
Main |
|
| System |
|
Menu |
|
| Configuration |
|
|
|
|
|
|
Select Display/Change Input Filter.
Display/Change Input Filter screen
Filter Sets
Display/Change
Filter Set
Basic
Firewall
Source IP | Dest IP | + | |||||
|
|
|
|
| + | ||
1 | 0.0.0.0 | 0.0.0.0 | TCP | NC | =2000 | Yes No | |
2 | 0.0.0.0 | 0.0.0.0 | TCP | NC | =6000 | Yes No | |
|
|
|
|
|
| ||
|
|
|
|
| + | ||
Select Input Filter 1 and press Return. In the Change Input Filter 1 screen, set the Destination Port information as shown below.
