13 Policy Management
13-16
VPN 3000 Concentrator Series User Guide
Note: An IP address is used with a wildcard mask to provide the desired granularity. A wildcard mask is the
reverse of a subnet mask; i.e., the wildcard mask has 1s in bit positions to ignore, 0s in bit positions to
match. For example:
0.0.0.0/255.255.255.255 = any address
10.10.1.35/0.0.0.0 = only 10.10.1.35
10.10.1.35/0.0.0.255
= all 10.10.1.nnn addresses
IP Address
Enter the source IP address in dotted decimal notation. Default is 0.0.0.0.
Wildcard-mask
Enter the source address wildcard mask in dotted decimal notation. Default is 255.255.255.255.
Destination Address
Specify the packet destination address that this rule checks; i.e., the address of the recipient.
Network List
Click the drop-down menu button and select the configured network list that specifies the destination
addresses. A network list is a list of network addresses that are treated as a single object. See the
Configuration | Policy Management | Traffic Management | Network Lists screens. Otherwise, you can select:
Use IP Address/Wildcard-mask below, which lets you enter a network address.
If you select a configured network list, the Manager ignores entries in the
IP Address and Wildcard-mask
fields.
See the wildcard mask note above.
IP Address
Enter the destination IP address in dotted decimal notation. Default is 0.0.0.0.
Wildcard-mask
Enter the destination address wildcard mask in dotted decimal notation. Default is 255.255.255.255.
TCP/UDP Source Port
If you select TCP or UDP under Protocol above, select the source port number that this rule checks.
Many different protocols or processes run in TCP or UDP environments, and each TCP or UDP process
running on a network host is assigned a port number. Thus an IP address plus a port number uniquely
identifies a process on a network host. Only TCP and UDP protocols use port numbers. The Internet
To Next Page
Loading...
Need help?
General