Atmp example, Atmp example -26 – Netopia 4541 User Manual

10-26 User’s Reference Guide

Select Output Filter 2 and press Return. In the Change Output Filter 2 screen, set the Protocol Type to allow
GRE as shown below.

ATMP example

To enable a firewall to allow ATMP traffic, you must provision the firewall to allow inbound and outbound UDP
packets specifically destined for por t 5150. The source por t may be dynamic, so often it is not useful to apply
a compare function on this por tion of the control/negotiation packets. You must also set the firewall to allow
inbound and outbound GRE packets (Protocol 47, Internet Assigned Numbers Document, RFC 1700), enabling
transpor t of the tunnel payload.

From the Main Menu navigate to Display/Change IP Filter Set, and from the pop-up menu select Basic Firewall.

Select Display/Change Input Filter.

Display/Change Input Filter screen

Change Output Filter 2

Enabled: Yes
Forward: Yes

Source IP Address: 0.0.0.0
Source IP Address Mask: 0.0.0.0

Dest. IP Address: 0.0.0.0
Dest. IP Address Mask: 0.0.0.0

Protocol Type: GRE

Main

Menu

System

Filter

Sets

Display/Change

Filter Set

Configuration

Basic

Firewall

+--#----Source IP Addr----Dest IP Addr------Proto-Src.Port-D.Port--On?-Fwd--+
+---------------------------------------------------------------------------+
| 1 0.0.0.0 0.0.0.0 TCP NC =2000 Yes No |
| 2 0.0.0.0 0.0.0.0 TCP NC =6000 Yes No |
| |
+---------------------------------------------------------------------------+