Wireless LAN – WLAN
BAT54-Rail/F..
Release
7.54
06/08
3.5
Extended WLAN protocol filters
91
Note: If rules are defined for an interface, but there is no match with one of
the rules for a packet from/for this interface, the default rule for this inter-
face is used for the packet. The default rule is pre-configured for each in-
terface with the 'drop' action but this is not visible in the protocol table. To
modify a default rule for an interface, a rule with the name 'default-drop' is
defined. Besides the interface naming, this rule can only contain wildcats
and the required action.
Checking of MAC addresses in packets sent over the respective inter-
face takes on a different form to that with in-coming packets.
V With out-going packets, the source MAC address read out of the pack-
et is checked against the destination MAC address entered in the rule.
V The destination MAC addresses read out of the packet are then
checked to see whether they are listed as currently active DHCP cli-
ents.
V Rules with the 'Redirect' action are ignored if they apply for an inter-
face over which the packet is to be sent. Please refer to section ’Redi-
rect function’ → page 82 for further information.
V In the third step, the action associated with the applicable rule is carried
out.
3.5.3 Redirect function
U The Redirect function
With the Redirect action, IPv4 packets can not only be transferred and
dropped, they can also be communicated specifically to a particular destina-
tion. As a general rule, the destination IP address of the packet is replaced
by the Redirect IP address entered. The destination MAC address of the
packet is replaced by the MAC address determined by ARP and associated
with the Redirect IP address.
In order for the redirected packets to find the correct sender on their "return
trip", a dynamic table is compiled with automatic filter rules that apply to pack-
ets leaving via this interface. This table can be viewed under
Status > LAN
Bridge > Connection table
. Rules in this table have a higher priority than oth-
er matching rules with the 'Transfer' or 'Drop' actions.
To Next Page
Loading...
Need help?
General
