beautypg.com

6 bridge host monitoring, 7 bridge firewall general description – Allied Telesis AT-WR4500 User Manual

Page 81

background image

AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers

81

RouterOS v3 Configuration and User Guide

Example

To monitor a bridge port:

[admin@AT-WR4562] interface bridge port> mo 0
status: in-bridge
port-number: 1
role: designated-port
edge-port: no
edge-port-discovery: yes
point-to-point-port: no
external-fdb: no
sending-rstp: no
learning: yes
forwarding: yes
-- [Q quit|D dump|C-z pause]

4.5.6

Bridge Host Monitoring

Command name: /interface bridge host

Property Description

age (read-only: time) - the time since the last packet was received from the host
bridge (read-only: name) - the bridge the entry belongs to
local (read-only: flag) - whether the host entry is of the bridge itself (that way all local interfaces are
shown)
mac-address (read-only: MAC address) - host's MAC address
on-interface (read-only: name) - which of the bridged interfaces the host is connected to

Example

To get the active host table:

[admin@AT-WR4562] interface bridge host> print
Flags: L - local
BRIDGE MAC-ADDRESS ON-INTERFACE AGE
bridge1 00:00:B4:5B:A6:58 ether1 4m48s
bridge1 00:30:4F:18:58:17 ether1 4m50s
L bridge1 00:50:08:00:00:F5 ether1 0s
L bridge1 00:50:08:00:00:F6 ether2 0s
bridge1 00:60:52:0B:B4:81 ether1 4m50s
bridge1 00:C0:DF:07:5E:E6 ether1 4m46s
bridge1 00:E0:C5:6E:23:25 prism1 4m48s
bridge1 00:E0:F7:7F:0A:B8 ether1 1s
[admin@AT-WR4562] interface bridge host>

4.5.7

Bridge Firewall General Description

Specifications

Submenu level: /interface bridge filter, /interface bridge nat, /interface bridge broute

Description

The bridge firewall implements packet filtering and thereby provides security functions that are used to
manage data flow to, from and through bridge.

Packets between bridged interfaces, just like any other IP traffic, are also passed through the 'generic' /ip
firewall rules (but bridging filters are always applied before IP filters/NAT of the built-in chain of the
same name, except for the output which is executed after IP Firewall Output). These rules can be used
with real, physical receiving/transmitting interfaces, as well as with bridge interface that simply groups
the bridged interfaces.

This manual is related to the following products:
See also other documents in the category Allied Telesis Hardware: