Avaya Upgrading Routers from Version 5 to Version 10.0 Manual do Utilizador descarregar pdf (Página 69)

Understanding Version 10.0 Traffic Filters

A-3

Converting Version 5 Combination Filters to Version 10.0 Filters

This section describes how to convert Version 5 combination ﬁlters to Version

10.0 ﬁlters.

Forwarding Strategy

If your ﬁltering strategy involves forwarding most trafﬁc and dropping only

speciﬁed packets, conﬁgure ﬁlters only for the speciﬁc types of trafﬁc you want to

drop.

Firewall Strategy

If your ﬁltering strategy involves blocking most trafﬁc and accepting only

speciﬁed packets (a “ﬁrewall” strategy), begin with a drop-all ﬁlter on the

interface. Add more speciﬁc, higher-precedence accept and drop ﬁlters to achieve

the desired result on that interface.

The drop-all ﬁlter describes the broadest range of packets you need to block from

the interface. From this group of packets, you specify the other, higher-precedence

ﬁlters, which create exceptions or “holes” in the drop-all range.

To ensure that all unwanted trafﬁc gets dropped:

1. Choose a ﬁeld that appears in every packet of the protocol you want to

ﬁlter.

2. Determine the length of the ﬁeld.

3. Determine the maximum possible value of the ﬁeld.

4. Determine the minimum value of the ﬁeld.

5. Enter these values when you deﬁne the drop-all ﬁlter.

1 2 ... 64 65 66 67 68 69 70 71 72 73 74 ... 87 88

Sem comentários

Avaya Upgrading Routers from Version 5 to Version 10.0 Manual do Utilizador Página 69