Efficient Networks
®
Router family
Command Line Interface Guide
Chapter 5: Ethernet Interface Commands
Efficient Networks
®
Page 5-25
The optional <interface> determines which Ethernet interface the filter applies to.
If the router has only one Ethernet interface, <interface> may be omitted.
If the router has two physical Ethernet interfaces (that is, a dual-port router),
you must specify the port by its number (0 or 1).
If logical interfaces have been defined for the physical Ethernet interface, the
port number and the logical interface number are specified (<port #>:<logical
#>, for example, 0:1).
Examples
This command example clears all filters from the Input filter list for Ethernet interface
0. Use this command as the first command in a list of commands starting a new Input
filter list.
This command example prevents the forwarding of all IP traffic. If you put these filters
at the end of the filter lists, they will stop all packets that have not matched filters
earlier in the lists.
Response
Command prompt
- q or -v
Specify one of these options to determine when watch messages are sent for this filter. The
messages are sent to the console serial port (and to any Syslog servers; see “
Syslog Client”
on page 7-1.
)
If neither
-q
or
-v
are specified for the filter, and an eth ip filter watch on command
is entered for the interface, a message is sent each time this filter causes a packet
to be dropped or rejected.
If -q (quiet) is specified, no messages are printed for this filter, even if the filter causes a
packet to be dropped or rejected.
If -v (verbose) is specified, a message is printed every time this filter matches a packet, re-
gardless of the filter action.
-> eth ip filter flush input 0
-> eth ip filter append receive drop
-> eth ip filter append transmit drop