Nortel 4134 Guia Do Utilizador
110
Packet filter configuration
Configuring IPv6 packet filters
Configure IPv6 packet filters to be applied to one or more interfaces.
Procedure steps
Step
Action
1
To enter configuration mode, enter:
configure terminal
2
To specify the name of the IPv6 packet filter to create or configure,
enter:
enter:
ipv6 packet-filter <packet-filter-name>
3
To configure rules for the packet filter, enter:
[no] {add | insert <lineno>}
{permit | deny}
{tcp | udp | icmp | ipv6 | <0-255>}
<src-address> <dst-address>
[sport <src-port>] [dport <dst-port>]
[icmptype <icmp-type>]
[icmpcode <icmp-code>]
[dscp <dscp-value>]
[flowlabel <flowlabel-value>]
[flags <tcp-flags>]
[routing {on|off}]
[log {on|off}]
[expire <expiry-time>]
—End—
Table 41
Variable definitions
Variable definitions
Variable
Value
{permit | deny}
Specifies the action to perform when a packet
matches the filter rule:
permit: allow the packet to cross the filter
deny: drop the packet
matches the filter rule:
permit: allow the packet to cross the filter
deny: drop the packet
{tcp | udp | icmp | ip |
igmp | <0-255>}
igmp | <0-255>}
Specifies the name or number of an Internet
protocol. This can be one of the key words (TCP,
UDP, ICMP, IGMP, or IP), or an integer in the range
0 - 255 representing an IP protocol number. To
match any Internet protocol, including ICMP, TCP,
and UDP, use the keyword IP.
protocol. This can be one of the key words (TCP,
UDP, ICMP, IGMP, or IP), or an integer in the range
0 - 255 representing an IP protocol number. To
match any Internet protocol, including ICMP, TCP,
and UDP, use the keyword IP.
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.