Motorola 2200 User Manual

Administrator’s Handbook

208

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

dst-compare [ nc | ne | lt | le | eq | gt | ge ]

Sets the destination compare operator action for the specified filter rule.

dst-compare only displays

when the

protocol is TCP or UDP.

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

src-port

value

Specifies the source IP por t to match packets (the por t on the sending host that originated the packet,
if the underlying protocol is TCP or UDP).

src-port does not display if nc is set for src-compare or dst-

compare.

set security pkt-filter filterset

filterset-name

[ input_filter | output_filter ]

index

dst-port

value

Specifies the destination IP por t to match packets (the por t on the receiving host that the packet is
destined for, if the underlying protocol is TCP or UDP).

dst-port does not display if nc is set for src-

compare or dst-compare.

set security pkt-filter

interface

assigned-filterset

filterset-name

Associates a filterset with a LAN or WAN inter face.

Example:

set security pkt-filter ethernet A assigned-filterset set1

Operator

Action

nc

No compare

ne

Not equal to

lt

Less than

le

Less than or equal to

eq

Equal to

ge

Greater than or equal to

gt

Greater than