12-22 CHAPTER 12: CREATING AND USING PACKET FILTERS
Loading Packet
Filters
When you create packet filters using an external text editor, you must load
the filters onto the system from the network host on which you created
them. Once loaded, the packet filter definition is converted into the internal
format that is used by the packet filter code in the system.
To load a packet filter:
1 From the top level of the Administration Console, enter:
bridge packetFilter load
You are prompted for a host IP address, file path name, user name, and
password. To use the value in brackets, press [Return] at any prompt.
2 Enter the host IP address.
3 Enter the path name.
4 Enter your user name.
5 Enter your password.
The packet filter is loaded onto the Switch 2200.
Any syntax errors in the packet filter definition are reported to you at this
time. See Appendix A: Packet Filter Opcodes, Examples, and Syntax Errors for a
description of these errors. If errors are detected, you are offered the option
of editing the filter definition or terminating the load.
The load might fail if the system has insufficient nonvolatile RAM to store
the filter. In this case, an error message tells you that the system did not
accept the load.
Assigning Packet
Filters to Ports
To assign a packet filter to one or more ports, the packet filter must reside
on the system. Each path (transmit all, transmit multicast, receive all, and
receive multicast) of a port can have only one packet filter assigned to it;
however, you can assign a single packet filter to multiple paths and ports.
Packet filter path
assignments
Placing a filter on the transmit path confines the packet to the segment it
originated from if it does not meet the forwarding criteria. Placing a filter on
the receive path prohibits a packet from accessing certain segments unless
Top-Level Menu
system
ethernet
fddi
➧bridge
ip
snmp
analyzer
script
logout
display
ipFragmentation
ipxSnapTranslation
addressThreshold
agingTime
stpState
stpPriority
stpMaxAge
stpHelloTime
stpForwardDelay
stpGroupAddress
port
➧packetFilter
list
display
create
delete
edit
➧load
assign
unassign
addressGroup
portGroup