beautypg.com

Atmp example, Atmp example -27 – Netopia 4752 User Manual

Page 169

background image

Virtual Private Networks (VPNs) 12-27

ATMP example

To enable a firewall to allow ATMP traffic, you must provision the firewall to allow inbound and outbound UDP
packets specifically destined for por t 5150. The source por t may be dynamic, so often it is not useful to apply
a compare function on this por tion of the control/negotiation packets. You must also set the firewall to allow
inbound and outbound GRE packets (Protocol 47, Internet Assigned Numbers Document, RFC 1700), enabling
transpor t of the tunnel payload.

From the Main Menu navigate to Display/Change IP Filter Set, and from the pop-up menu select Basic Firewall.

Select Display/Change Input Filter.

Display/Change Input Filter screen

For Input Filter 1 set the Destination Por t information as shown below.

Main

Menu

System

Filter

Sets

IP Filter

Sets

Display/Change

IP Filter Set

Configuration

Basic

Firewall

+-#----Source IP Addr----Dest IP Addr------Proto-Src.Port-D.Port--On?-Fwd-+
+-------------------------------------------------------------------------+
| 1 0.0.0.0 0.0.0.0 UDP NC =5150 Yes Yes |
| 2 0.0.0.0 0.0.0.0 GRE -- -- Yes Yes |
| |

Change Input Filter 1

Enabled: Yes
Forward: Yes

Source IP Address: 0.0.0.0
Source IP Address Mask: 0.0.0.0

Dest. IP Address: 0.0.0.0
Dest. IP Address Mask: 0.0.0.0

Protocol Type: TCP
Source Port Compare... No Compare
Source Port ID: 0
Dest. Port Compare... Equal
Dest. Port ID: 1723
Established TCP Conns. Only: No

See also other documents in the category Netopia Hardware: