Eth-route-default – B&B Electronics WLNN-AN(ER,SE,SP.EK)-DP551 - Manual User Manual

144

Airborne Enterprise CLI Reference Manual

address. In the case of a missing port, all traffic matching the identified IP address will be impacted.

By default all broadcast traffic on the Ethernet interface is dropped. It is necessary to establish a

broadcast forwarding rule for broadcast messages with the required port number to be relayed to the
wireless interface.

Here are some examples of rules:

eth-route tcp port 80 drop

This will cause all TCP/IP traffic
using port 80 to be dropped.

eth-route all ip 192.168.2.10 drop

This will cause all traffic to IP

address 192.168.2.10 to be

dropped.

eth-route tcp ip 192.168.2.10 port 23 accept

This will cause all TCP/IP traffic
meant for IP address 192.168.2.10

on port 23 to be forwarded to the
wireless interface.

eth-route icmp ip 192.168.2.10 accept

The will allow all ICMP traffic meant
for ip address 192.168.2.10 to be

forwarded to the wireless interface.

Entering the command with no parameters will display a list of the current Ethernet routing rules in the
order they will be applied to incoming traffic.

eth-route-default

Command

eth-route-default

Arguments

[accept | drop]

Security
Level

3 (config)

Device Type

Ethernet

Default

[accept]

Description

Sets the default rule for incoming Ethernet traffic. Allowing or denying access to the public (wireless)
network from the private (wired) network. Through the rules established by this command and the eth-
route,

setting a device firewall can be constructed to limit unauthorized use of the wireless interface

on the network it is enabled for.

accept

Allows all Ethernet traffic meant for the public (wireless) network to be

forwarded.

drop

Blocks all Ethernet traffic meant for the public (wireless) network.

If the eth-route-default is set to drop and no additional rules (using eth-route) are added no
traffic will be forwarded from the wired to wireless networks.