CoreWatch User’s Manual
211
Chapter 13: Configuring Security on the SSR
10. Do one of the following:
–
If you have defined all of the rules for the ACL, click
Finish
.
–
If you want to define additional rules, select the
Add More Rules
check box and click
Next
.
11. If you selected the
Add More Rules
check box, define another rule in the IP ACL Rule
panel that appears. To do so repeat
step 9
and
step 10
until you define all the desired
rules for the ACL.
Source Port
For TCP or UDP, enter the number of the source TCP or UDP
port. This field applies only to TCP or UDP traffic. If the
incoming packet is ICMP or another non-TCP or non-UDP
packet and you specified a source or destination port, the SSR
does not check the port value. The SSR checks only the source
and destination IP addresses in the packet.
If a service uses the same port for both TCP and UDP, you do
not need to define two separate rules. Instead, you can define
one IP rule and specify the port that the service uses.
You can specify a range of port numbers using operator
symbols; for example, 10-20 (between 10 and 20 inclusive),
>1024 (greater than 1024), !=1024 (not equal to 1024).
The port numbers of some popular services are already
defined as options. For example, for DNS, you can enter the
port number 53 as well as select the DNS (53) option from the
second Source Port field.
Destination Address
Enter the destination address of the flow.
Destination Mask
Enter the destination filtering mask of the flow.
The same requirements and restrictions for Source Mask apply
to Destination Mask.
Destination Port
For TCP or UDP, enter the number of the destination TCP or
UDP port. This field applies only to incoming TCP or UDP
traffic.
The same requirements and restrictions for Source Port apply
to Destination Port.
TOS
Enter a TOS from 0 to 15.
Table 23. IP/TCP/UDP ACL rule criteria fields (Continued)
Field
Description
Содержание SSR-GLX19-02
Страница 1: ...CoreWatch User s Manual 9032564 04...
Страница 2: ...Notice 2 CoreWatch User s Manual...
Страница 20: ...Preface 20 CoreWatch User s Manual...
Страница 64: ...Chapter 5 Changing System Settings 64 CoreWatch User s Manual...
Страница 86: ...Chapter 6 Configuring SSR Bridging 86 CoreWatch User s Manual...
Страница 106: ...Chapter 7 Configuring VLANs on the SSR 106 CoreWatch User s Manual...
Страница 206: ...Chapter 12 Configuring QoS on the SSR 206 CoreWatch User s Manual...
Страница 246: ...Chapter 13 Configuring Security on the SSR 246 CoreWatch User s Manual...
Страница 274: ...Chapter 15 Configuring BGP on the SSR 274 CoreWatch User s Manual Figure 184 BGP Peer Group Definition panel Options tab...
Страница 363: ...CoreWatch User s Manual 363 Chapter 16 Configuring Routing Policies on the SSR 9 Click OK...
Страница 364: ...Chapter 16 Configuring Routing Policies on the SSR 364 CoreWatch User s Manual...
Страница 370: ...Chapter 17 Checking System Status 370 CoreWatch User s Manual...
Страница 390: ...Chapter 18 Monitoring Real Time Performance 390 CoreWatch User s Manual...
Страница 396: ...Chapter 19 Checking the Status of Bridge Tables 396 CoreWatch User s Manual...
Страница 430: ...Chapter 20 Checking the Status of Routing Tables 430 CoreWatch User s Manual...
Страница 442: ...Chapter 22 Obtaining Reports 442 CoreWatch User s Manual...
Страница 456: ...Appendix B CoreWatch Menus 456 CoreWatch User s Manual...