Filter Configuration
Except on the first page, right running head:
Heading1 or Heading1NewPage text (automatic)
723
Alcatel-Lucent
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Configuration Guide
FILTER CONFIGURATION COMMANDS
The following steps are used to configure a filter on the OmniAccess 5740 USG:
T
O CREATE A FILTER
EXAMPLE
ALU(config)# ip filter f1
ALU(config-filter-f1)#
T
O CONFIGURE A RULE FOR A FILTER
Note: The ‘reset’ keyword can be used in conjunction only with the “deny” keyword.
Command (in CM) Description
ip filter <name> This command configures a filter.
Command (in FCM) Description
[<1-65535>] match [any|all]
<match-list name>...
{permit|deny [reset]}[log]
[verbose] [timer <timer-
object>]
This command is used to configure rules
(set priority for the rule, associate match-
lists and action) for a filter, and also set
the action deny or permit for the
configured rules.
By default, ‘any’ keyword is used.
The range for the rule number is 1-
65535. This rule number signifies the
priority of a rule. By default, the
numbering pattern for rule number is the
next multiple of ten to the highest existing
rule number.
Reset: Use this keyword to send a reset
packet to the sender in case of TCP.
Log: Use this keyword to log the packet
information.
Verbose: This logs all packets of a
session.
Timer object: The name of the time
range.
default {deny|permit}[log]
[verbose]
This command sets a default action of
either deny or permit on the filter.
The default action for a filter is
“deny”.
To Next Page
Loading...
