Version 7.2 165 Mediant 1000B Gateway & E-SBC
User's Manual 13. Security
Parameter Description
Start Port
start-port
[AccessList_Start_Port]
Defines the destination UDP/TCP start port (on this device) to
where packets are sent.
The valid range is 0 to 65535.
Note: When the protocol type isn't TCP or UDP, the entire
range must be provided.
End Port
end-port
[AccessList_End_Port]
Defines the destination UDP/TCP end port (on this device) to
where packets are sent.
The valid range is 0 to 65535 (default).
Note: When the protocol type isn't TCP or UDP, the entire
range must be provided.
Protocol
protocol
[AccessList_Protocol]
Defines the protocol type (e.g., UDP, TCP, ICMP, ESP or Any)
or the IANA protocol number in the range of 0 (Any) to 255.
The default is Any.
Note: The parameter also accepts the abbreviated strings
"SIP" and "HTTP". Specifying these strings implies selection of
the TCP or UDP protocols and the appropriate port numbers
as defined on the device.
Use Specific Interface
use-specific-interface
[AccessList_Use_Specific_Interface]
Determines whether you want to apply the rule to a specific
network interface defined in the IP Interfaces table (i.e.,
packets received from that defined in the Source IP field and
received on this network interface):
 [0] Disable (default)
 [1] Enable
Note:
 If enabled, then in the 'Interface Name' field (described
below), select the interface to which the rule is applied.
 If disabled, then the rule applies to all interfaces.
Interface Name
network-interface-name
[AccessList_Interface_x]
Defines the network interface to which you want to apply the
rule. This is applicable if you enabled the 'Use Specific
Interface' field. The list displays interface names as defined in
the IP Interfaces table in ''Configuring IP Network Interfaces''
on page 135.
Action
Action Upon Match
allow-type
[AccessList_Allow_Type]
Defines the firewall action to be performed upon rule match.
 "Allow" = (Default) Permits the packets.
 "Block" = Rejects the packets
Packet Size
packet-size
[AccessList_Packet_Size]
Defines the maximum allowed packet size.
The valid range is 0 to 65535.
Note: When filtering fragmented IP packets, this field relates to
the overall (re-assembled) packet size, and not to the size of
each fragment.
Byte Rate
byte-rate
[AccessList_Byte_Rate]
Defines the expected traffic rate (bytes per second), i.e., the
allowed bandwidth for the specified protocol. In addition to this
field, the 'Burst Bytes' field provides additional allowance such
that momentary bursts of data may utilize more than the
defined byte rate, without being interrupted.
For example, if 'Byte Rate' is set to 40000 and 'Burst Bytes' to
To Next Page
Loading...
Need help?
General
