ESR series service routers.ESR-Series. User manual
Step Description Command Keys
esr(config-object-group-network)#
ipv6 address-range
<FROM-ADDR>-<TO-ADDR>
<FROM-ADDR> – range starting
IPv6 address;
<TO-ADDR> – range ending
IPv6 address, optional
parameter. If the parameter is
not specified, a single IPv6
address is set by the
command.
The addresses are defined as
X:X:X:X::X where each part
takes values in hexadecimal
format [0..FFFF].
22 Create services lists which will be used
during filtration.
esr(config)# object-group service
<obj-group-name>
<obj-group-name> – service
profile name, set by the string
of up to 31 characters.
23 Specify services list description
(optional).
esr(config-object-group-service)#
description <description>
<description> – profile
description, set by the string of
up to 255 characters.
24 Add necessary services (tcp/udp ports)
to the list.
esr(config-object-group-service)#
port-range <port>
<port> – takes values in the
range of [1..65535].
You can specify several ports
separated by commas ',' or you
can specify the range of ports
with '-'.
25 Create applications lists which will be
used in DPI mechanism.
esr(config)# object-group
application <NAME>
<NAME> – application profile
name, set by the string of up to
31 characters.
26 Specify applications list description
(optional).
esr(config-object-group-
application)# description
<description>
<description> – profile
description, set by the string of
up to 255 characters.
27 Add necessary applications to the lists. esr(config-object-group-
application)# application <
APPLICATION >
<APPLICATION> – specifies
the application covered by the
given profile
28 Add interfaces (physical, logical, E1/
Multilink and connected), remote-
access server (l2tp, openvpn, pptp) or
tunnels (gre, ip4ip4, l2tp, lt, pppoe, pptp)
into security zones (optional).
esr(config-if-gi)# security-zone
<zone-name>
<zone-name> – up to 12
characters.
To Next Page
Loading...
Need help?
General
