Perle Systems 833IS - page 126

IP Filter

110 Perle 833IS User Guide

Filters will be used by the Perle 833IS Server in the following way:

1. The user record for the dial-in user will be checked. If the record has been

configured to Disable Server Filters, then only the user assigned filters will be

checked. Proceed to point 4.

2. Incoming data packets are compared with the filters assigned to the server

starting with the first filter in the Server Filter Assignment list. As soon as the

packet matches one of the filters, then the packet is accepted or rejected and no

further checking is done.

3. If the packet does not match any of the filters assigned to the server, then the user

record will be checked. If there are no user assigned filters, then the server default

action will be carried out to accept or reject the packet and no further checks are

done.

4. The incoming data packet will be compared to the filters assigned to the user,

starting with the first filter in the User Filter Assignment list. As soon as the

packet matches one of the filters, then the packet will be accepted or rejected.

5. If the packet does not match any user assigned filters, then the user default action

will be carried out to accept or reject the packet.

Packet filtering works in conjunction with the RADIUS and Shared User Database

security systems.

Shared User Database

Filters can be configured and assigned to a user record on the Remote Perle 833IS.

These records will be sent to the Local Perle 833IS when a user dials in and makes a

connection.

RADIUS

To use packet filtering with the RADIUS security server:

1. Define the filters on the Perle 833IS Server.

2. Configure the user record on the RADIUS server with the names of the filters to

be assigned to the User.

3. When a user dials into the Perle 833IS, the name of the filters will be sent from

the RADIUS server to the Perle 833IS.

Filter Definition Up to 50 filters can be assigned for the IP protocol. IP filters can specify the Address,

Mask, Sub-Protocol and Port of the IP packet. The filters can accept or reject

Contents

Main Copyrights Important Safety Notice FCC/DOC Radio Frequency Interference Statement Note Caution Page INDUSTRY CANADA REQUIREMENTS. FEDERAL COMMUNICATIONS COMMISSION (FCC) REQUIREMENTS. About this Book Users How to Use This Guide Whats in the Guide Page Page Perle 833IS User Guide xi Contents Introduction............................................................... Section 1: Installation..................................... Chapter 1: Quick Installation Overview............... Chapter 2: Site Preparation.................................. Section 2: Configuration.............................. Chapter 5: Configuring the Perle 833IS............. Chapter 6: Configuring the Interfaces............... Chapter 7: Configuring the Protocols............... Perle 833IS User Guide xiii Section 3: Management............................. Chapter 10: Managing the Perle 833IS........... xiv Perle 833IS User Guide Appendix 1: Menu Descriptions and Maps... Appendix 2: AT Command Set.................. ...... Appendix 3: Specifications............................... Appendix 4: RADIUS Server Attributes.......... Page Page Introduction The Perl e 833IS ...Reliability and Flexibility About the Features of the 833I S Page Page Page Page Page Chapter 1: Quick Installation Overview About Installation Preparing the Site Setting up and Installing the 833I S Hardware Setting up the LAN Connection Configuring the 833IS Attaching to the Telephone Network Verifying Correct Operation Chapter 2: Site Preparation About Site Preparation Site Preparation Overview Electrical Requirements Environmental Requirements Cable Planning and Requirements Page Page Page Page Telephony Cabling Page Chapter 3: Setting Up and Installing About Setting Up and Installing Unpacking the 833I S Familiarize Yourself with the Unit Page Feature Cards Page Assembling the Hardware Page Attaching the LAN Cable Page Setting up the 833IS LAN Connection Page Page Page Page Page Verifying Connection Page Page Page Configuring the 833IS Page Chapter 4: Using the Perle 833IS Manager About Using the Manager System Requirements Installing the Mana ger Software Page Connecting to the Server Page Page Page Using the Mana ger Main Screen Page Page Page Page Page Page Loading Firmw are Page Page Page Page Chapter 5: Configuring the Perle 833IS About Configuring the Perle 833I S How th e 833IS Wo r ks Page Page Page Configuration Overview Using Configuration Files Page Page Page Page Page Page Chapter 6: Configuring the Interfaces About Configuring the Interfaces Page Configure the Ethernet LAN Interface Configure the Token Ring LAN Interface Page Configure the ISDN BRI Line Interface Page Page Page Page Page Configuring the Perl e DSP Mod em Interface Page Page Chapter 7: Configuring the Protocols About Configuring the Protocols Page Configuring the Protocols Configuring IP Protocol Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page IP Filter Page Page Page Page Configuring IPX Page Page Page Page Page Page Page Page Page Page Page Configuring the Bridge Function (BCP) Page Page Configuring PPP Page Page Using AppleTalk Using NetBEUI Page Chapter 8: Configuring the User Database About Configuring the User Database Overview of the User Database Page Configure the Internal User Database Page Page Page Page Page Page Page Page Page Lan To Lan Page Page Page Page Page Page Page Standard Profile Page Page Page Page Page Page Page Chapter 9: Configuring the Server About Configuring the Server Configuring the Server Page Dial-Out Page Page Security Page Configuring User Authentication Security Page Page Page Page Page Page Page Page Page Page Group Settings Page Page Page Page Page Page SNMP Page Page Page Page Page Page Page Page Page Chapter 10: Managing the Perle 833IS About Managing the Perle 833I S 833IS Manager Stat is t i cs Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Event Log Page 833IS Fron t P a ne l Page Page Appendix 1: Menu Descriptions and Maps About Menu Descriptions and Maps Front Panel Main Screen Front Panel Main Screen Map Control Control Perle 833IS User Guide 225 Control Menu Map Status Perle 833IS User Guide 227 Status Menu Map Card Status 228 Perle 833IS User Guide Card Status Card Type Menu Description continues on page 229. Status specific to each card type is detailed below. Perle 833IS User Guide 229 Card Status continued Card Status continued 230 Perle 833IS User Guide Card Status continued Perle 833IS User Guide 231 Card Status Menu Map Network Status Display 232 Perle 833IS User Guide Network Status Display Perle 833IS User Guide 233 Network Status Display Menu Map 234 Perle 833IS User Guide Network Status Display Menu Map Enable/Disable IPX Enable/Disable Network IP Factory Default Setup Provides the base configuration for the 833IS so that it can communicate with the Manager. Factory Default Mode and Setup Map 236 Perle 833IS User Guide Factory Default Mode and Setup Map . Perle 833IS User Guide 237 Indicates start of Factory Default Mode Displays. Page Perle 833IS User Guide 239 Factory Default Mode Menu Map Page Appendix 2: AT Command Set About AT Command Set AT Co mma nds Page Page Page Page Page Page AT Commands 248 Perle 833IS User Guide Appendix 2: AT Command Set Perle 833IS User Guide 249 AT Commands 250 Perle 833IS User Guide Page Page Page Page Page Page Page Page Error Detection and Data Compression Commands Page S-Registers S-Registers 262 Perle 833IS User Guide S-Register Definitions Page Page AT Command Set Summary Page Page Page Page Appendix 3: Specifications Dimensions Physical/Electrical Specifications Chassis Memory LAN Interfaces ISDN BRI Interface PerleDSP Modem Interface Approvals Protocols Supported LAN Environments Dial In Clients Supported Dial Out Security Management RFCs Supported Perle 833IS User Guide 279 Appendix 4: RADIUS Server Attributes Account Request Messages Access-Accept Messages Appendix 4: RADIUS Server Attributes Perle 833IS User Guide 281 Accounting Messages 282 Perle 833IS User Guide Accounting Messages Page Page Appendix 5: Cisco Configuration Mode Introduction to Cisco Configuration Mode Overview of 833IS Page Differences Between 833IS and Cisco Products Page Page Command Overview Installation and Configuration of 833IS with Cisco Configuration Mode Page Page Page Page Monitoring the 833IS Differences between 833IS Manager and Cisco Configuration Mode Page Page Glossary Page Page Page Page Page Perle 833IS User Guide 305 Index Numerics A B Perle 833IS User Guide 306 C Perle 833IS User Guide 307 D E Perle 833IS User Guide 308 F G H Perle 833IS User Guide 309 I L Perle 833IS User Guide 310 M Perle 833IS User Guide 311 N O P Perle 833IS User Guide 312 Q R S Perle 833IS User Guide 313 Perle 833IS User Guide 314 T U V W