Perle Systems IOLINK-520 B.12

Programmable Filtering

B.12

— IOLINK-PRO & 520 Reference Manual

Mask Combinations

Mask combinations may be required to ensure that a frame is sufficiently qualified before the decision to filter is

made. The qualification a frame must go through before a filter decision is made depends on the reason for the filter.

Nonetheless, a few examples below have been provided that should aid in the creation of a mask that may require

that extra little bit of qualification.

Example

To prevent a specific Ethernet station from accessing any TCP/IP host on the other segment. Assume the Ethernet

address is 01-02-03-04-05-06.

The mask would be: 6-010203040506&12-0800&23-06

Example

To prevent a specific protocol type from accessing a specific Ethernet Address. Assume the Ethernet address is 01-

02-03-04-05-06, and the protocol type is Appletalk®. The filter mask would be: 0-010203040506&12-809B

Example

To prevent any Ethernet address with the 10th bit set to a 0 from accessing a LAT host or an IP host with an

Internet address of 128.001.001.128.

This particular mask, although not particularly useful, might be best served by creating two masks instead of one long

mask. The decision is up to the Bridge Manager, but a longer mask is always more difficult to understand later. Both

methods are presented below:

Combined Filters 4-X’XX0X’&(12-6004|(12-0800&30-80010180))

Separate Filters 4-X’XX0X’&12-6004

4-X’XX0X’&12-0800&30-80010180

Contents

Main IOLINK-PRO & 520 Reference Manual 1.1 Section 1 Introduction The IOLINK-PRO & 520 Routers IP Routing and the IOLINK-PRO & 520 Routers 1.2 ARPAddress Resolution Protocol Proxy ARP The Complete IP Connection 1.3 1.4 IOLINK-PRO & 520 Reference Manual IP Header Details 1.5 ICMP Messages Page 1.7 RIPRouting Information Protocol 1.8 IPX Routing and The IOLINK-PRO & 520 Routers IPX Addressing 1.9 1.10 Establishing an IPX Connection Service Advertisement Protocol 1.11 Server Types Routing Information Protocol 1.12 Bridging and the IOLINK-PRO & 520 Routers 1.13 The Initial Bridging Process 1.14 Aging Timer 1.15 Filled Address Table 1.16 IOLINK Router Feature Definitions Telnet Link Compression 1.17 Figure 1 - 6 Typical Throughput Over 56 Kbps Link 1.18 WAN Topologies Bandwidth On Demand IOLINK-PRO & 520 Reference Manua 1.19 1.20 Disaster Recovery Backup Link ISDN Single Active Link & Dual Active Link Operating Software Upgrades 2.1 Section 2 ISDN Connection Management IOLINK PRO & 520 ISDN Connection Management Wide Area Network Topologies Supported Call Establishment Methods 2.2 Page 2.4 Connection Process Page 2.6 IP Specifics 2.8 IPX Specifics 3.1 Section 3 Link Interfaces Reference Pinout Information V.35 Module Identification: Link Clocking Information 3.2 ATL CSU/DSU Link Module Information 3.3 Console Pinouts 3.4 CSU/DSU Module: T1/E1 Module: CSU/DSU T1/E1 3.5 V.24 & RS232C Link Pinouts 3.6 V.11 & X.21 Link Pinouts 3.7 RS442 & RS530 Link Pinouts 3.8 V.35 Link Pinouts 3.9 RS232 Null-Modem Cable Configuration Figure 3 - 11 RS232 Null-Modem Cable 3.10 V.35 Null-Modem Cable Configuration Figure 3 - 12 V.35 Null-Modem Cable 3.11 RS530 Null-Modem Cable Configuration Figure 3 13 RS530 Null-Modem Cable 3.12 RS530 To RS449 Conversion Cable Figure 3 14 RS530 to RS449 Conversion Cable 3.13 V.11/X.21 Null-Modem Cable Configuration 3.14 WAN Link Control-Signal Operation A.1 Appendix A - Event Logs Event logs: A.2 A.3 A.4 A.5 A.6 A.7 Page IOLINK-PRO & 520 Reference Manual A.9 Alarm Logs: A.10 A.11 A.12 A.13 A.14 Code Description A.15 A.16 A.17 A.18 A.19 A.20 PPP Security Logs: B.1 Appendix B - Programmable Filtering MAC Address Filtering Security B.2 B.3 B.4 B.5 B.6 B.7 Pattern Filter Operators Bridge Pattern Filtering Protocol Discrimination B.8 B.9 B.10 Bandwidth Conservation B.11 General Restrictions B.12 B.13 IP Router Pattern Filtering Protocol Discrimination IPX Router Pattern Filtering Page Appendix C - Frame Formats Frame Formats C.2 ETHERNET TYPE CODES Octet Locations on an IP Routed TCP/IP Frame