Chapter11pf
Parameter
Description
<string2>
Thisisonestandardmacaddressstring.
dmacThissetsdestinationmacaddress.
<string3>
Thisisonestandardmacaddressstring.
l3protocolThisistheL3protocoltypeusedbypacket.
all|0|tcp|6|udp|17|i
cmp|1|igmp|2|num
ber
Allprotocols/allprotocols/TCPprotocol/TCP
protocol/UDPprotocol/UDPprotocol/ICMP
protocol/ICMPprotocol/IGMPprotocol/User
inputsspecifiedprotocolnumber
sip
Thisspecifiessourceaddress,whichmustbe
onepredefinedaddress.
<string4>
Thisisonestring.
dip
Thisspecifiesdestinationaddress,whichmust
beonepredefinedaddress.
<string5>
Thisisonestring.
sport
Thisspecifiessourcestartportid.
<number1>Thisisonenumber.
sport_end
Thisspecifiessourceendportid.
<number2>Thisisonenumber.
dport
Thisspecifiesdestinationstartportid.
<number3>Thisisonenumber.
dport_end
Thisspecifiesdestinationendportid.
<number4>Thisisonenumber.
ExampleT opermitthedevicewhosesourceMACaddressis
00:50:04:C3:B0:31toaccessthedevicewhosedestinationipis
doc_serveranddestinationportidis8000,executethefollowing
command,
#ruleaddactionacceptsmac00:50:04:C3:B0:31dip
doc_serverdport8000
ruleaddactionl2protocolarp
Command
Function
ThiscommandisusedtoaddoneARP/RARP/IPXpacketīæltering
rule.
CommandFormatruleaddaction<accept|reject>l2protocol<arp|0806|ra
rp|8035|ipx|8137>[log<yes|no>][area<string>][smac<
string2>][dmac<string3>]
Parameter
Description
Parameter
Description
add
Thisaddsonepacketfilteringrule.
action
Thisistheactiontopacketmeetingrules:
permitordeny.
accept|rejectpermit|deny
ConfidentialandProprietaryInformationofZTECORPORATION121
To Next Page
Loading...
