Intel 9515 User Manual
DMZ Firewall Solution for the Express Router
07-12-99 Version
1.0
23
Filter
Function
Settings
9
Discards all ICMP packets entering the
DMZ network. This prevents the router
from reporting the IP netmask. These
filters must include all IP addresses on
the router, including the WAN IP
address if the router is using numbered
links.
DMZ network. This prevents the router
from reporting the IP netmask. These
filters must include all IP addresses on
the router, including the WAN IP
address if the router is using numbered
links.
Action:
Discard
Protocol:
ICMP
Dest. address type:
Host
Dest. address:
<LAN1 IP address>
Scr. address type:
All
10
Two filters are required.
Action:
Discard
Protocol:
ICMP
Dest. address type:
Host
Dest. address:
<LAN2 IP address>
Scr. address type:
All
11
Discards all packets to open router
ports.
ports.
Four filters are required.
Action:
Discard
Protocol:
UDP
dest address type:
Host
dest address:
<LAN1 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All
12
Action:
Discard
Protocol:
UDP
dest address type:
Host
dest address:
<LAN2 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All
13
Action:
Discard
Protocol:
TCP
Flags:
All
dest address type:
Host
dest address:
<LAN1 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All
14
Action:
Discard
Protocol:
TCP
flags:
All
dest address type:
Host
dest address:
<LAN2 IP address>
Dest. port:
All
Src. address type:
All
Src. port:
All