Справочник Пользователя для Alcatel-Lucent speedtouch 500
187
Firewall Commands
srcbridgeport
A number between 0 and 6.
Represents the bridge port the virtual packet should [or should
NOT] arrive on.
Use :bridge iflist for a list of available bridge ports.
Represents the bridge port the virtual packet should [or should
NOT] arrive on.
Use :bridge iflist for a list of available bridge ports.
OPTIONAL
src
The source IP address (range) the packet should [or should NOT]
come from. (Supports cidr notation).
come from. (Supports cidr notation).
OPTIONAL
dstintf
The name of the interface the packet should [or should NOT] be
going to.
(NOT applicable if used in a chain assigned to the input hook)
going to.
(NOT applicable if used in a chain assigned to the input hook)
OPTIONAL
dstintfgrp
The interface group the packet should [or should NOT] be going to.
Choose between:
Choose between:
•
wan
•
local
•
lan
(NOT applicable if used in a chain assigned to the input hook)
OPTIONAL
dst
The destination IP address (range) the packet should [or should
NOT] be going to. (supports cidr notation).
NOT] be going to. (supports cidr notation).
OPTIONAL
precedence
A number between 0 and 7.
Represents the precedence in the IP packet (part of tos).
Represents the precedence in the IP packet (part of tos).
OPTIONAL
dscp
A number between 0 and 63
Represents the DSCP in the IP packet (part of tos).
Represents the DSCP in the IP packet (part of tos).
OPTIONAL
tos
A number between 0 and 255.
Represents the Type Of Service specification which should be
expected [or NOT expected] in the IP packet. The Type of Service
numbering specification is in accordance to the latest version of
RFC1700: Assigned numbers.
Represents the Type Of Service specification which should be
expected [or NOT expected] in the IP packet. The Type of Service
numbering specification is in accordance to the latest version of
RFC1700: Assigned numbers.
OPTIONAL
prot
The protocol (name or number) expected [or NOT expected] in
the IP packet.
Select one of the supported protocol names (See
the IP packet.
Select one of the supported protocol names (See
for a listing of
protocol names supported by the SpeedTouch™).
Alternatively, specify the protocol number.
Alternatively, specify the protocol number.
OPTIONAL
syn
Expect TCP SYN flag set (yes) or not (no).
In combination with TCP ACK this allows selection of incoming
versus outgoing TCP connections.
In combination with TCP ACK this allows selection of incoming
versus outgoing TCP connections.
OPTIONAL
urg
Expect TCP URG flag set (yes) or not (no).
OPTIONAL
ack
Expect TCP ACK flag set (yes) or not (no).
OPTIONAL
srcport
The TCP/UDP port (or beginning of range) the packet should [or
should NOT] be from.
Select one of the supported TCP/UDP port names (See
should NOT] be from.
Select one of the supported TCP/UDP port names (See
for a listing of
TCP/UDP port names supported by the SpeedTouch™).
Alternatively, specify the protocol number.
Alternatively, specify the protocol number.
OPTIONAL