beautypg.com

Eth-route – B&B Electronics WLNN-AN(ER,SE,SP.EK)-DP551 - Manual User Manual

Page 143

background image

Airborne Enterprise CLI Reference Manual

143

eth-route

Command

eth-route

Arguments

[all | bcast | icmp | tcp | udp] [ip xxx.xxx.xxx.xxx] [port ] [accept | drop]

Security

Level

3 (config)

Device Type

Ethernet

Default

[blank]

Description

Sets a specific rule for incoming Ethernet traffic. Allowing control of which services, IP addresses and

ports can be accessed on the public (WAN) network by Ethernet clients on the private network.
Through the rules established by this command and the eth-route-default setting a device
firewall can be constructed to limit unauthorized use of the wireless interface on the network it is
enabled for.

all|icmp|tcp|udp

Selects the protocol for the rule.

ip xxx.xxx.xxx.xxx

Defines the public network address the rule applies to.

The xxx.xxx.xxx.xxx must represent a valid IP address
where xxx is an integer between 0 and 255. The resultant IP
address must not be 0.0.0.0.

port

Defines the port number for the rule.

The port number must be an integer.

accept|drop

Defines if the rule allows or blocks traffic.

The following provides details for each of the parameters:

all

Allows all traffic to be affected by the rule.

bcast

The rule impacts only broadcast traffic.

icmp

The rule impacts only ICMP traffic

tcp

The rule impacts only TCP/IP traffic.

udp

The rule impacts only UDP traffic.

accept

This option will allow traffic matching the rules conditions to be

forwarded to the wireless interface.

drop

This option will stop traffic matching the rules conditions from being
forwarded to the wireless interface.

relay

May only be used if the selected protocol is bcast, assigning the
action to relay will cause UDP traffic with destination address
255.255.255.255

received on the specified port to be relayed to the

wireless interface.

If selected, the IP address [IP Address:Port#] should not be
included in the rule.

Multiple rules can be established to support firewall requirements. The rules set by the eth-route
command take precedence over the eth-route-default setting.

It is not required to include both the IP address and the port number when constructing a rule, if one is

omitted the rule assumes it applies to all instances of the missing parameter. In the case of an IP
address missing, all port accesses matching the listed value will be affected, regardless of the IP

See also other documents in the category B&B Electronics Accessories communication: