22-16
Cisco ONS 15454 DWDM Installation and Operations Guide, R6.0
August 2005
Chapter 22 Management Connectivity Reference
22.2.7 Scenario 7: Provisioning the ONS 15454 Proxy Server
Figure 22-12 shows the same proxy server implementation with ONS 15454 ENEs in multiple rings.
Figure 22-12 Scenario 7: ONS 15454 Proxy Server With ENEs on Multiple Rings (ANSI and ETSI)
Table 22-3 shows the rules the ONS 15454 follows to filter packets for the firewall when nodes are
configured as ENEs and GNEs. If the packet is addressed to the ONS 15454, additional rules (shown in
Table 22-4) are applied. Rejected packets are silently discarded.
124255
Remote CTC
10.10.20.10
10.10.20.0/24
10.10.10.0/24
Interface 0/0
10.10.20.1
Router A
Interface 0/1
10.10.10.1
ONS 15454
Gateway NE
10.10.10.100/24
ONS 15454
End NE
192.168.10.250/24
ONS 15454
End NE
192.168.10.150/24
ONS 15454
End NE
192.168.10.200/24
Ethernet
Optical Fiber
ONS 15454
Gateway NE
10.10.10.200/24
ONS 15454
End NE
192.168.80.250/24
ONS 15454
End NE
192.168.60.150/24
ONS 15454
End NE
192.168.70.200/24
Table 22-3 Proxy Server Firewall Filtering Rules
Packets Arriving At: Are Accepted if the Destination IP Address is:
TCC2/TCC2P
Ethernet interface
• The ONS 15454 itself
• The ONS 15454’s subnet broadcast address
• Within the 224.0.0.0/8 network (reserved network used for standard
multicast messages)
• Subnet mask = 255.255.255.255
DCC interface
• The ONS 15454 itself
• Any destination connected through another DCC interface
• Within the 224.0.0.0/8 network
To Next Page
Loading...
