Intel 9515 Benutzerhandbuch
DMZ Firewall Solution for the Express Router
07-12-99 Version
1.0
12
Filter
Function
Settings
Scr. address type:
Host
Src. address:
<LAN1 IP address>
Src. port :
All
9
Discards all ICMP packets entering the
DMZ network. This prevents the router
from reporting the IP netmask.
DMZ network. This prevents the router
from reporting the IP netmask.
Action:
Discard
Protocol:
ICMP
Dest. address type:
All
Scr. address type:
All
10
Discards all packets to open router
ports.
ports.
Four filters are required.
Action:
Discard
Protocol:
UDP
Dest. address type:
Host
Dest. address:
<LAN1 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All
11
Action:
Discard
Protocol:
UDP
Dest. address type:
Host
Dest. address:
<LAN2 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All
12
Action:
Discard
Protocol:
TCP
Flags:
All
Dest. address type:
Host
Dest. address:
<LAN1 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All
13
Action:
Discard
Protocol:
TCP
flags:
All
Dest. address type:
Host
Dest. address:
<LAN2 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All
3.3.2.2 Transmit (Tx) filters on LAN2
To pass all packets transmitted from the DMZ, set the default action to Pass.