Nortel Networks WEB OS 212777 User Manual

Web OS 10.0 Application Guide

Chapter 7: Filtering

n

177

212777-A, February 2002

Example:

A network administrator has noticed a significant number of ICMP frames on one

portion of the network and wants to determine the specific sources of the ICMP messages. The
administrator uses the Command Line Interface (CLI) to create and apply the following filter:

When applied to one or more switch ports, this simple filter rule will produce log messages
that show when the filter is triggered, and what the IP source and destination addresses were
for the ICMP frames traversing those ports.

Example:

Filter log message output is shown below, displaying the filter number, port, source

IP address, and destination IP address:

>> # /cfg/slb/filt 15

(Select filter 15)

>> Filter 15# sip any

(From any source IP address)

>> Filter 15# dip any

(To any destination IP address)

>> Filter 15# action allow

(Allows matching traffic to pass)

>> Filter 15# name allow matching traffic

(Provide a descriptive name for the

filter)

>> Filter 15# proto icmp

(For the ICMP protocol)

>> Filter 15# ena

(Enable the filter)

>> Filter 15# adv

/

l

og enable

(Log matching traffic to syslog)

>> Filter 15 Advanced# /cfg/slb/port 7

(Select a switch port to filter)

>> SLB port 7# add 15

(Add the filter to the switch port)

>> SLB port 7# filt ena

(Enable filtering on the switch port)

>> SLB port 7# apply

(Apply the configuration changes)

>> SLB port 7# save

(Save the configuration changes)

slb: filter 15 fired on port 7, 206.118.93.110 -> 20.10.1.10