APC NBRK0570 用户手册
85
NetBotz Appliance User’s Guide
Example configurations
Example 1: Allow default SNMP traffic from only 192.168.20.21, and reject all other activity.
Filter 1: To accept UDP protocol network packets from IP address 192.168.20.21 on port 161.
[Filter Action] Accept
[IP Address] Include 192.168.20.21
[Protocol] Include UDP
[Port] Include
Filter 2: To reject all addresses that are exactly (over the full 32 bits of the address) "not
0.0.0.0". This effectively says "reject all".
0.0.0.0". This effectively says "reject all".
[Filter Action] Reject
[IP Address] Exclude 0.0.0.0/32
[Protocol] Include All
[Port] <blank>
Example 2: Allow global access to the appliance, but allow only 192.168.20.21 to access the default
SNMP port on the appliance.
SNMP port on the appliance.
Filter 1: To reject all addresses using the UDP protocol on port 161 that are not the specific
address 192.168.20.21.
address 192.168.20.21.
[Filter Action] Reject
[IP Address] Exclude 192.168.20.21
[Protocol] Include UDP
[Port] Include 80
Filter 2: To accept all TCP requests on port 443 from all addresses that are exactly not 0.0.0.0.
(TCP on port 443 is the definition of the HTTPS protocol.)
(TCP on port 443 is the definition of the HTTPS protocol.)
[Filter Action] Accept
[IP Address] Exclude 0.0.0.0/32
[Protocol] Include TCP
[Port] Include 443