[prev in list] [next in list] [prev in thread] [next in thread] 

List:       inet-access
Subject:    Re: Lucent 6000 NAS Filters
From:       netlink () netlinkcorp ! com
Date:       2000-12-29 2:52:33
[Download RAW message or body]

I follow you on your example. What is protocol=4 equal to?
I have some info that relates to protocols where
1 = ICMP
5 = STREAM
6 = TCP
17 = UDP
...

What I what like to do is allow TCP across my ethernet and WAN
Filter out ICMP and UDP except for ports 53, 1645 and 1646
and Prevent IP spoofing.
Just need to understand the context of the Filters so I don't
close myself out of the box or prevent telnet sessions.

I appreciate the help.
-------
R. Hall
NET-LINK Corp.


Andy Walden wrote:
> 
> I would expect under Filters - Input Filters you could fill it out like
> this:
> 
> Type=IP
>  Src Mask=0.0.0.0
>  Src Adrs=0.0.0.0
>  Dst Mask=255.255.255.255
>  Dst Adrs=proxy-ip
>  Protocol=4
>  Src Port Cmp=None
>  Src Port #=N/A
>  Dst Port Cmp=Eql
>  Dst Port #=8080
>  TCP Estab=N/A
> 
> Then do a similar filter allowing your own network. I didn't test this.
> 
> andy
> 
> On Thu, 28 Dec 2000 netlink@netlinkcorp.com wrote:
> 
> > A 6000 series Lucent NAS
> >
> > R. Hall
> >
> >
> > Andy Walden wrote:
> > >
> > > This would be a 4xxx/6xxx or a TNT?
> > >
> > > andy
> > >
> > > On Thu, 28 Dec 2000 netlink@netlinkcorp.com wrote:
> > >
> > > > I am looking to do something very similar but with
> > > > an Ascend/Lucent NAS. Anyone have a list or reference available?
> > > > Thanks.
> > > > -------
> > > > R. Hall
> > > > NET-LINK Corp.
> > > >
-
List archives can be found at: <http://www.moongroup.com/inet.php>
Send 'unsubscribe' in the body to 'list-request@inet-access.net' to leave.
Eat sushi frequently.   inet@inet-access.net is the human contact address.

[prev in list] [next in list] [prev in thread] [next in thread]