Eicon Networks S52 Guide de l'utilisateur Page 39
- Page / 91
- Table des matières
- DEPANNAGE
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
Eicon Connections for Linux User’s Guide
page 37
Configuring Packet Filtering Rules
When Routing Services receives an IP datagram over an interface, it checks the configured
packet filtering rules, and transparently forwards or drops the datagram based on these rules.
It is important to note that adding packet filtering will affect the performance of Eiconcard
Routing Services. As each IP datagram has to be tested against all of the defined packet
filtering rules, the datagrams will be delayed. It is therefore recommended to keep the number
of defined rules to a minimum and to make the rules as simple as possible.
Note: If no packet filtering rules are defined, all packets are forwarded by default.
Creating Packet Filtering Rules
Packet filtering allows you to determine what type of IP traffic can pass through your WAN
connections. You can control access to and from specific services, hosts, or networks. The
syntax for configuring packet filtering rules is given below with a detailed explanation of the
available options:
Syntax filter [-saddr source_addr addr_mask]
[-daddr dest_addr addr_mask][-prot IP_protocol]
[-sport [source_port]][-dport [dest_port]]
in|out|both drop|forward
Parameters Description
-saddr
source_addr
addr_mask
Specifies the source address and address mask for which you are
specifying a packet filtering rule. All packets with a source address
that match an address specified in the packet filtering rules will be
either forwarded or dropped.
-daddr
dest_addr
addr_mask
Specifies the destination address and address mask for which you
are specifying a packet filtering rule. All packets with a destination
address that match an address specified in the packet filtering rules
will be either forwarded or dropped.
-prot
IP_protocol
Identifies the Transport Layer Protocol for which a packet filtering
rule is being specified. The protocol field of the IP datagram specifies
the Transport Layer Protocol encapsulated in the IP datagram. All
packets with a Transport Layer Protocol that match a protocol
specified in the packet filtering rules will be either forwarded or
dropped. TCP and UDP are currently the only Transport Layer
Protocols that support source and destination port checks (see
/etc/protocols).
-sport
[source_port]
Specifies the source port for which you are specifying a packet
filtering rule. All TCP/IP protocols use addresses, known as ports,
that are used to uniquely define services (access points to the
Transport layer) at the Transport layer (see /etc/services). For
example, all ftp connections to a host are directed to port number
21; this way the receiving host knows to send the request to the ftp
service and not to the telnet service. All packets with a source port
that match a port specified in the packet filtering rules are either
forwarded or dropped. A source port is specified to prevent access
to certain services or applications on a local system by remote hosts.
This option must be enclosed within the brackets and port ranges
must be specified numerically.
- User’s Guide 1
- page 4 4
- Contents 5
- About this Guide 7
- Typographic Conventions 8
- CHAPTER 2 9
- Eiconcard Services 10
- Eiconcard Host PAD Driver 11
- Eiconcard Terminal PAD Driver 11
- Eiconcard Routing Services 12
- Eiconcard SNMP Services 13
- Integrating with OSI 13
- OSI Model 14
- For More Information 15
- page 14 16
- CHAPTER 3 17
- Completing the Installation 18
- Removing Eiconcard Router 18
- Removing Eiconcard Services 19
- Introduction 19
- Install an Eiconcard 19
- Uninstall an Eiconcard 20
- Configure Eiconcard Protocol 20
- High-Level Services 21
- Line Protocols 21
- Dialer Selection 21
- Changing Protocol Parameters 22
- Eiconcard Memory Requirements 22
- Online Help 23
- Configuration Procedure 24
- Configure Advanced Options 25
- Configure the PAD 25
- page 24 26
- Terminal PAD 27
- page 26 28
- Using tpad with cu and uucp 29
- The cu Commands 30
- page 30 32
- X.3 PAD Parameters 33
- The uucp Configuration Files 33
- Using uucp and cu 34
- page 34 36
- CHAPTER 5 37
- page 36 38
- Load the mpr.if file 40
- IP Routing Tables 40
- Displaying IP-routing Entries 42
- Testing Your Installation 42
- The Test System 43
- Resources for the Test System 43
- The Addressing Scheme 43
- Configuring the Eiconcards 44
- Creating an X.25 Test Circuit 45
- Troubleshooting 46
- Setting Up a PPP Connection 48
- page 48 50
- page 50 52
- page 52 54
- CHAPTER 6 55
- Load/Self-test Timeout Period 56
- Watchdog Wake Up Period 56
- X.25 socket driver 56
- Modem and Null-Modem Cables 57
- Establishing Contact 58
- Modem Cables 59
- HSI/V.24 Converter 60
- Null-Modem Cables 61
- X.21 HSI Null-Modem Cable 62
- References 63
- Facility Types 64
- Facility Syntax 64
- Examples of User Facilities 64
- Packet size 65
- Window Size 65
- Fast Select 66
- Throughput Class Negotiation 66
- Bilateral CUG Selection 68
- Reverse Charging 68
- Priority Traffic: 0,0,1,1 69
- Traffic: 69
- 1,1,0,0,1,1 69
- Networks and DNICs 70
- X.25 Diagnostic Codes 71
- page 70 72
- X.25 Cause Codes 73
- ASCII Control Codes 74
- page 74 76
- X.29 Call User Data Format 77
- page 76 78
- Key Packet Formats 79
- Call Accepted Packet Format 80
- Clear Request Packet Format 81
- 2:n Echo 85
- 5:n Auxiliary Device Control 85
- page 84 86
- 8:n Discard data 87
- 9:n Carriage return padding 87
- 10:n Line folding 87
- 11:n Communication speed 87
- 15:n Editing 88
- 14:n Linefeed padding 88
- 16:n Character delete 89
- 17:n Line delete 89
- 18:n Line redisplay 89
- 19:n Editing service signals 89
- 20:n Echo mask 90
- 21:n Parity treatment 90
- 22:n Page wait 90
Produits connexes et manuels pour Mise en réseau Eicon Networks S52
(83 pages)
(10 pages)
(24 pages)© 2020, manymanuals.fr. Tous droits réservés | 0.027 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels