Black Box ACS120 Uživatelská příručka Strana 160
- Strana / 450
- Tabulka s obsahem
- ŘEŠENÍ PROBLÉMŮ
- KNIHY
Hodnocené. / 5. Na základě hodnocení zákazníků
Filters and Network Address Translation
160 BLACK BOX ® Advanced Console Server
Rule Specification Options
The following additional options can be specified:
-p - -protocol[!]protocol
The protocol of the rule or of the packet to check. The specified protocol can be
one of tcp, udp, icmp, or all, or it can be a numeric value, representing one of
these protocols or a different one. A protocol name from /etc/protocols is also
allowed. A "!" argument before the protocol inverts the test. The number zero is
equivalent to all. Protocol all will match with all protocols and is taken as default
when this option is omitted.
-s - -source[!]address[/mask]
Source specification. Address can be either a hostname, a network name, or a
plain IP address. The mask can be either a network mask or a plain number, speci-
fying the number of 1's at the left side of the network mask. Thus, a mask of 24 is
equivalent to 255.255.255.0. A "!" argument before the address specification
inverts the sense of the address. The flag - -src is a convenient alias for this option.
-d - -destination[!]address[/mask]
Destination specification. See the description of the -s (source) flag for a detailed
description of the syntax. The flag - -dst is an alias for this option.
-j - - jump target
This specifies the target of the rule; i.e., what to do if the packet matches it. The
target can be a user-defined chain (other than the one this rule is in), one of the
special built-in targets which decide the fate of the packet immediately, or an
extension (see EXTENSIONS below). If this option is omitted in a rule, then match-
ing the rule will have no effect on the packet's fate, but the counters on the rule
will be incremented. The special built-in targets are :
• ACCEPT means to let the packet through.
• DROP means to drop the packet on the floor.
• QUEUE means to pass the packet to userspace (if supported by the kernel).
• RETURN means stop traversing this chain and resume at the next rule in the
previous (calling) chain. If the end of a built-in chain is reached or a rule in a
built-in chain with target RETURN is matched, the target specified by the
chain policy determines the fate of the packet.
- BLACK BOX 1
- Advanced Console Server 1
- Version 2.1.4 Revision 1a 1
- User Guide 1
- Table of Contents 10
- Audience and User Levels 13
- How to use this Guide 14
- Conventions and Symbols 15
- Glossary Entries 16
- Quick Steps 16
- Parameter Syntax 16
- Spacing and Separators 17
- Note Box Icons 18
- Introduction and Overview 19
- Introduction 31
- System Requirements 31
- Pre-Install Checklist 33
- Task List 34
- The Wizard 34
- Custom Wizard 35
- Quick Start 36
- Configuration using Telnet 46
- Power Users 49
- New Users 50
- Task 5: Activate the changes 60
- Task 7: Save the changes 61
- Accessing the Serial Ports 62
- Access Method 73
- Authentication 100
- How to Test the Configuration 113
- CAS Port Pool 115
- Clustering 118
- Enhanced Clustering 125
- General Configuration 129
- Master box Configuration 129
- Slave-1 box Configuration 131
- Browser Method 135
- Data Buffering 137
- CLI Method 149
- Dual Power Management 154
- Configuration for TS 155
- Description 156
- Structure of the iptables 156
- Rule Specification Options 160
- Match Extensions 161
- TCP Extension 162
- UDP Extension 163
- ICMP Extension 163
- Multiport Extension 163
- Target Extensions 164
- REJECT (filter table only) 164
- SNAT (nat table only) 164
- DNAT (nat table only) 165
- MASQUERADE (nat table only) 165
- REDIRECT (nat table only) 165
- Browser method 166
- Generating Alarms 172
- Help Wizard Information 188
- Requesting Help for the CLI 194
- Supported Cards 197
- Ejecting Cards 197
- PCMCIA Network Configuration 198
- Wireless LAN PC Cards 199
- Modem PC Cards 200
- Client Side Setup 205
- ISDN PC Cards 206
- How to configure dial out 207
- Linux (Callback Client) 212
- TS Setup Wizard 213
- Serial Settings 219
- Wizard Method 221
- Session Sniffing 235
- The Syslog Functions 256
- Terminal Appearance 271
- Time Zone 280
- How to set Date and Time 281
- Users and Passwords 283
- Linux File Structure 284
- The vi Editor 286
- The Routing Table 288
- Secure Shell Session 289
- The Process Table 293
- TS Menu Script 294
- ºC to 44ºC) 297
- External 298
- Dimensions 298
- Weight 6 lb. 6.2 lb 298
- Approvals FCC and CE, Class A 298
- Rear Panel LEDs 299
- The RS-232 Standard 300
- Cable Length 301
- Connectors 302
- Which cable should be used? 303
- Cable Diagrams 304
- Adapters 307
- Black Box\Sun Netra Adapter 308
- Configuration Parameters 311
- CAS Parameters 321
- TS Parameters 331
- Dial-in Access Parameters 333
- Appendix D - Linux-PAM 337
- Upgrades 357
- Troubleshooting 359
- Hardware Test 362
- Port Conversation 363
- Test Signals Manually 363
- Single User Mode 364
- Procedure 369
- User Guide 371 371
- #saveconf 371
- Appendix G - IPSEC 373
- How Web User Management works 407
- Adding and Deleting Users 409
- Deleting a User 410
- Adding a group 411
- Deleting a group 411
- Adding an Access Limit 412
- Deleting an access limit 413
- Tested Environment 415
- On Windows 416
- Step-by-Step Process 417
- Console Access Server 419
- Terminal Server 422
- Dial-in Access 424
- Basic Parameters (wiz) 427
- Alarm Parameter (wiz --al) 428
- Syslog Parameters (wiz --sl) 431
- • Conf.locallogins 432
- Appendix L - Copyrights 433
- List of Figures 437
- List of Tables 441
- Glossary 443
© 2020, manymanuals.cz. Všechna práva vyhrazena. | 0.053 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentáře k této Příručce