10-16
Traffic/Security Filters (ProCurve Series 2600/2600-PWR and 2800 Switches)
Using Source-Port Filters
The same command, using IDX 26, shows how traffic from the Internet is
handled.
As the company grows, more resources are required in accounting. Two
additional accounting workstations are added and attached to ports 12 and
13. A second server is added attached to port8.
Figure 10-7. Expanded Network Configuration for Named Source-Port Filters
Example
ProCurve(config)# show filter 26
Traffic/Security Filters
Filter Type : Source Port
Source Port : 1
Dest Port Type | Action
--------- --------- + -------
1 10/100TX | Forward
2 10/100TX | Forward
3 10/100TX | Forward
4 10/100TX | Forward
5 10/100TX | Forward
6 10/100TX | Forward
7 10/100TX | Drop
8 10/100TX | Forward
9 10/100TX | Forward
10 10/100TX | Drop
11 10/100TX | Drop
12 10/100TX | Forward
. . .
Accounting Server 1
Port 7
Port 1
Router to the
Internet
Port 12
Accounting Workstation 3
Port 13
Accounting Workstation 4
Network Design
1. Accounting Workstations may only send traffic to the Accounting Server.
2. No Internet traffic may be sent to the Accounting Server or Workstations.
3 All other switch ports may only send traffic to Port 1.
Port 10
Accounting Workstation 1
Port 11
Accounting Workstation 2
Accounting Server 2
Port 8