Amer Networks E5Web GUI User Manual

Now, add the ApplicationRule object:

Device:/bt_app_list> add ApplicationRule

Action=Allow
AppFilter=3
UserAuthGroups=rogue_user
ForwardChain=narrow_025_pipe
ReturnChain=narrow_025_pipe

Then, return to the default context:

Device:/bt_app_list> cc

Device:/>

Last, associate this ApplicationRuleSet with the IPPolicy:

Device:/> set IPPolicy lan_to_wan_policy

AppControl=Yes
AC_RuleList=bt_app_list

InControl

Follow the same steps used for the Web Interface below.

Web Interface

First, define the Application Rule Set:

1.

Go to: Policies > Firewalling > Application Rule Sets > Add > Application Rule Set

2.

Specify a suitable name for the list, in this case bt_app_list

3.

Set the Default Action to Allow

4.

Click OK

Next, define an Application Rule as a child.

1.

Go to: Policies > Firewalling > Application Rule Sets > bt_app_list > Add > Application
Rule

2.

Select Allow for the Action

3.

Enable Application Control and add the signatures bittorrentandutp (both are required for
BitTorrent).

4.

Select Authentication Settings and enter the user name rogue_user

5.

Select Traffic Shaping Settings and move the pipe narrow_025_pipe into the Selected list
for both the Forward chain and Return chain

6.

Click OK

Last, associate the Application Rule Set with the IP Policy:

1.

Go to: Policies > Firewalling > Main IP Rules > lan_to_wan_policy

Chapter 3: Fundamentals

211