Motorola 2200 User Manual

Administrator’s Handbook

206

Packet Filtering Settings

Packet Filtering has two par ts:

❑ Create/Edit/Delete Filter Sets, create/edit/delete rules to a Filter Set.
❑ Associate a created Filter Set with a WAN or LAN interface

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

forward [ on | off ]

Creates or edits a filter rule, specifying whether packets will be for warded or not.

☛

NOTE:

If this is the first rule, it will create the filter-set called filterset-name, other wise it will edit
the filterset.
If the index is not consecutive, the system will select the next consecutive index. If the
index does not exist, a rule will be created. If a rule exists, the rule will be edited.

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

idle-reset [ on | off ]

Turns idle reset on or off for the specified filter rule. A match on this rule resets idle-timeout status and
keeps the WAN connection alive. The default is

off. For idle-reset to be displayed, forward must be

enabled on a filter rule.

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

frc-rte [ on | off ]

Turns forced routing on or off for the specified filter rule. A match on this rule will force a route for pack-
ets. The default is

off. For frc-rte to be displayed, forward must be enabled on a filter rule.

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

gateway

ip_addr

Specifies the gateway IP address for forced routed packets, if forced routing is enabled.

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

src-ip

ip_addr

Specifies the source IP address to match packets (where the packet was sent from).

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

src-mask

mask

Specifies the source IP mask to match packets (where the packet was sent from).