Filter and Firewall
Left running head:
Chapter name (automatic)
752
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Command Reference Guide
Alcatel-Lucent
To Create a ALG Rule:
[<1-65535>] match [any|all] <match-list name>... service
{<service-name>|alcatel-tftp|dns|ftp|none|rpc|rtsp|sip
[pinhole] |tftp}
This command creates a rule for mapping ALG action for a well known service to
a non-standard port or disable a well known service on its well known port.
The range for the rule number is 1-65535.
The following example shows that if the packet is intended for the server with
address 20.1.1.1 comes to port 100, then the service is recognized as FTP and
the ALG is invoked accordingly. The standard port invocation of ALG is also active
here.
ALU(config)# match-list m1
ALU(config-match-list-m1)# tcp any host 20.1.1.1 service 100
ALU(config-customized-service)# match all m1 service ftp
RELEASE HISTORY
Release 3.0: parameter [pinhole] was introduced.
Parameter Description
1-65535 Denotes the customized ALG rule
number. This rule number signifies the
priority of a rule.
match-list name Name of the match-list.
To Next Page
Loading...
Need help?
General
