Filter
Top Products
Web OS 10.0 Application Guide
Chapter 7: Filtering
177
212777-A, February 2002
Example: A network administrator has noticed a significant number of ICMP frames on one
portion of the network and wants to determine the specific sources of the ICMP messages. The
administrator uses the Command Line Interface (CLI) to create and apply the following filter:
When applied to one or more switch ports, this simple filter rule will produce log messages
that show when the filter is triggered, and what the IP source and destination addresses were
for the ICMP frames traversing those ports.
Example: Filter log message output is shown below, displaying the filter number, port, source
IP address, and destination IP address:
>> # /cfg/slb/filt 15 (Select filter 15)
>> Filter 15# sip any (From any source IP address)
>> Filter 15# dip any (To any destination IP address)
>> Filter 15# action allow (Allows matching traffic to pass)
>> Filter 15# name allow matching traffic (Provide a descriptive name for the
filter)
>> Filter 15# proto icmp (For the ICMP protocol)
>> Filter 15# ena (Enable the filter)
>> Filter 15# adv/log enable (Log matching traffic to syslog)
>> Filter 15 Advanced# /cfg/slb/port 7 (Select a switch port to filter)
>> SLB port 7# add 15 (Add the filter to the switch port)
>> SLB port 7# filt ena (Enable filtering on the switch port)
>> SLB port 7# apply (Apply the configuration changes)
>> SLB port 7# save (Save the configuration changes)
slb: filter 15 fired on port 7, 206.118.93.110 -> 20.10.1.10