Prestige 662H/HW Series User’s Guide
Table 125 Abbreviations Used in the Filter Rules Summary Menu (continued)
FIELD DESCRIPTION
mAction Matched.
“F” means to forward the packet immediately and skip checking the remaining rules. “D” means to drop the packet.
“N“ means to check the next rule.
nAction Not Matched.
“F” means to forward the packet immediately and skip checking the remaining rules. “D” means to drop the packet.
“N” means to check the next rule.
The protocol dependent filter rules abbreviation are listed as follows:
Table 126 Rule Abbreviations Used
FILTER TYPE | DESCRIPTION |
|
|
IP |
|
|
|
Pr | Protocol |
|
|
SA | Source Address |
|
|
SP | Source Port Number |
|
|
DA | Destination Address |
|
|
DP | Destination Port Number |
|
|
GEN |
|
|
|
Off | Offset |
|
|
Len | Length |
|
|
36.4 Configuring a Filter Rule
To configure a filter rule, type its number in Menu 21.1.x – Filter Rules Summary and press [ENTER] to open menu 21.1.x.1 for the rule.
There are two types of filter rules: TCP/IP and Generic. Depending on the type of rule, the parameters for each type will be different. Use [SPACE BAR] to select the type of rule that you want to create in the Filter Type field and press [ENTER] to open the respective menu.
To speed up filtering, all rules in a filter set must be of the same class, for instance, protocol filters or generic filters. The class of a filter set is determined by the first rule that you create. When applying the filter sets to a port, separate menu fields are provided for protocol and device filter sets. If you include a protocol filter set in a device filters field or vice versa, the Prestige will warn you and will not allow you to save.
Chapter 36 Filter Configuration | 366 |