beautypg.com

Advanced filtering, Tcp/udp port filtering, Advanced filtering -12 tcp/udp port filtering -12 – HP ProCurve 520wl Wireless Access Point User Manual

Page 61

background image

Setting Filters

4-12

advanced filtering

advanced filtering

advanced filtering

advanced filtering

Figure 4-11

Figure 4-11

Figure 4-11

Figure 4-11 Advanced Filtering Configuration Screen

Advanced Filtering Configuration Screen

Advanced Filtering Configuration Screen

Advanced Filtering Configuration Screen

Enable Proxy ARP

Enable Proxy ARP

Enable Proxy ARP

Enable Proxy ARP

. Place a checkmark in the box provided to allow the Access Point to respond to Address Resolution

Protocol (ARP) requests for wireless clients. Proxy ARP answers ARP requests for wireless stations without actually

forwarding the (broadcast) ARP request to the wireless network. If disabled, the Access Point will bridge ARP requests for

wireless clients to the wireless LAN.

Enable IP/ARP Filtering

Enable IP/ARP Filtering

Enable IP/ARP Filtering

Enable IP/ARP Filtering

. Place a checkmark in the box provided to allow IP/ARP filtering based on the IP/ARP Filtering

Address and IP Mask. Leave the box unchecked to prevent filtering.

IP/ARP Filtering Address

IP/ARP Filtering Address

IP/ARP Filtering Address

IP/ARP Filtering Address

. Enter the Network filtering IP Address.

– I

P/ARP IP Mask

P/ARP IP Mask

P/ARP IP Mask

P/ARP IP Mask

. Enter the Network Mask IP Address.

The following advanced filtering protocols can filter in the wireless-to-Ethernet direction, the Ethernet-to-wireless direction, or in

both directions. Click Edit and use the

Status

Status

Status

Status

field to Enable or Disable the filter.

Q

Deny IPX RIP

Q

Deny IPX SAP

Q

Deny IPX LSP

Q

Deny IP Broadcasts

Q

Deny IP Multicasts

tcp/udp port filtering

tcp/udp port filtering

tcp/udp port filtering

tcp/udp port filtering

Port-based filtering enables you to control wireless user access to network services by selectively blocking TCP/UDP protocols

through the WL520. A user specifies a Protocol Name, Port Number, Port Type (TCP, UDP, or TCP/UDP), and filtering interfaces

(all interfaces, no interfaces, or any combination of Wireless Slot A, Wireless Slot B, and Ethernet) in order to block access to

services, such as Telnet and FTP, and traffic, such as NETBIOS and HTTP.
For example, an WL520 with the following configuration would discard frames received on Wireless Slot A with a UDP

destination port number of 137, effectively blocking NETBIOS Name Service packets.

protocol type

protocol type

protocol type

protocol type

(tcp/udp)

(tcp/udp)

(tcp/udp)

(tcp/udp)

destination

destination

destination

destination

port number

port number

port number

port number

protocol name

protocol name

protocol name

protocol name

interface

interface

interface

interface status

status

status

status

(enable/disable)

(enable/disable)

(enable/disable)

(enable/disable)

UDP

137

NETBIOS Name Service

Wireless port A

Enable