Security
Example network
Incoming
Packet Filter
Netopia
Internet
|
|
|
|
|
|
| IP: 200.1.1.?? | ||
|
|
|
|
|
|
|
|
| |
|
|
|
|
|
|
| DATA | ||
Example filters |
|
|
|
|
|
|
| ||
Example 1 |
|
|
|
|
|
|
| ||
|
|
|
|
|
|
|
|
|
|
|
| Filter Rule: |
| 200.1.1.0 |
| (Source IP Network Address) |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 255.255.255.128 |
| (Source IP Mask) |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| Forward = No |
| (What happens on match) |
|
| |
|
|
|
|
|
|
|
|
|
|
Incoming packet has the source address of 200.1.1.28 |
|
|
|
| |||||
|
|
|
|
|
|
|
| ||
| IP Address | Binary Representation |
|
|
|
| |||
|
|
|
|
|
| ||||
| 200.1.1.28 | 00011100 | (Source address in incoming IP packet) | ||||||
|
|
|
|
|
|
|
|
| |
| AND |
|
|
|
|
|
|
| |
|
|
|
|
|
| ||||
| 255.255.255.128 | 10000000 | (Perform the logical AND) | ||||||
|
|
|
|
|
|
| |||
|
|
| 00000000 | (Logical AND result) | |||||
|
|
|
|
|
|
|
|
|
|
This incoming IP packet has a source IP address that matches the network address in the Source IP Address field (00000000) in the Netopia 4553. This will not forward this packet.
