EasyManuals Logo

Radware Alteon User Manual

Radware Alteon
842 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #393 background imageLoading...
Page #393 background image
Alteon Application Switch Operating System Application Guide
Filtering and Traffic Manipulation
Document ID: RDWR-ALOS-V2900_AG1302 393
To configure TCP flag filters
This procedure is based on Figure 63 - TCP Flag Filter Configuration Example, page 392.
1. Configure an allow filter for TCP traffic from the LAN that allows the Web servers to pass SMTP
requests to the Internet.
2. Configure a filter that allows SMTP traffic from the Internet to pass through Alteon only if the
destination is one of the Web servers, and the frame is an acknowledgment (SYN-ACK) of a TCP
session.
3. Configure a filter that allows SMTP traffic from the Internet to pass through Alteon only if the
destination is one of the Web servers, and the frame is an acknowledgment (ACK-PSH) of a TCP
session.
>> # /cfg/slb/filt 10
(Select a filter for trusted SMTP requests)
>> Filter 10# sip 203.122.186.0
(From the Web servers' source IP
address)
>> Filter 10# smask 255.255.255.0
(For the entire subnet range)
>> Filter 10# sport any
(From any source port)
>> Filter 10# proto tcp
(For TCP traffic)
>> Filter 10# dip any
(To any destination IP address)
>> Filter 10# dport smtp
(To well-known destination SMTP port)
>> Filter 10# action allow
(Allow matching traffic to pass)
>> Filter 10# ena
(Enable the filter)
>> Filter 10# /cfg/slb/filt 15
(Select a filter for Internet SMTP ACKs)
>> Filter 15# sip any
(From any source IP address)
>> Filter 15# sport smtp
(From well-known source SMTP port)
>> Filter 15# proto tcp
(For TCP traffic)
>> Filter 15# dip 203.122.186.0
(To the Web servers' IP address)
>> Filter 15# dmask 255.255.255.0
(To the entire subnet range)
>> Filter 15# dport any
(To any destination port)
>> Filter 15# action allow
(Allow matching traffic to pass)
>> Filter 15# ena
(Enable the filter)
>> Filter 15# adv/tcp
(Select the advanced TCP menu)
>> Filter 15 Advanced# ack ena
(Match acknowledgments only)
>> Filter 15 Advanced# syn ena
(Match acknowledgments only)
>> Filter 15# /cfg/slb/filt 16
(Select a filter for Internet SMTP ACKs)
>> Filter 16# sip any
(From any source IP address)
>> Filter 16# sport smtp
(From well-known source SMTP port)
>> Filter 16# proto tcp
(For TCP traffic)
>> Filter 16# dip 203.122.186.0
(To the Web servers' IP address)

Table of Contents

Other manuals for Radware Alteon

Preview: Installation And Maintenance Guide
Installation And Maintenance Guide98 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Radware Alteon and is the answer not in the manual?

Radware Alteon Specifications

General IconGeneral
ModelAlteon
ManufacturerRadware
LayerLayer 4-7
TypeApplication Delivery Controller (ADC)
FeaturesLoad balancing, SSL offloading, application acceleration, DDoS protection
Form FactorVirtual Appliance