Enabling the firewall – Force10 Networks PSeries 100-00055-01 User Manual
Page 76
76
Firewall
Enabling the Firewall
Enable Drop mode using the command
pnic default-drop-enable
. Disable Drop mode using the command
pnic default-drop-disable
. These commands are shown in
Figure 39
[root@localhost ~]# pnic default-drop-disable
No device number specified. Assuming device 0
*** Disabling Default-Packet-Drop on card:0 successful!
*** Temporary memory enabled.
[root@localhost ~]# pnic default-drop-enable
No device number specified. Assuming device 0
*** Enabling Default-Packet-Drop on card:0 successful.
*** Temporary memory disabled.
[root@localhost SW]# pnic showconf
No device number specified. Assuming device 0
DMA Capture
: on
MAC Rewrite state
: CH0 - disabled; CH1 - disabled
Default Drop Packet
: enabled
Temporary memory
: disabled
Aggregate mode
: enabled
PHY passive mode
: disabled
####################### On MASTER FPGA #######################
Per Flow Packet Limit
: unlimited
Timeout for Flow Garbage Collection : 16
Truncation after Match Packet
: full packet
####################### On PCI FPGA #######################
DMA Burst Size
: 1024 (Bytes)
DMA Flush Timer
: 1 (ms)
Interrupt Frequency Timer : 5 (ms)
Version : P2.3.0.2
[root@localhost SW]#
Drop mode Enabled
Drop mode Disabled
Verify Drop mode is Enabled
Enabling and Disabling Drop Mode