Vlan-based filtering, Vlan-based filtering 174, Figure 7-4 – Nortel Networks WEB OS 212777 User Manual

Web OS 10.0 Application Guide

174

n

Chapter 7: Filtering

212777-A, February 2002

VLAN-based Filtering

Filters are applied per switch, per port, or per VLAN. VLAN-based filtering allows a single
Web switch to provide differentiated services for multiple customers, groups, or departments.
For example, you can define separate filters for Customers A and B on the same Web switch
on two different VLANs. If VLANs are assigned based on data traffic, for example, ingress
traffic on VLAN 1, egress traffic on VLAN 2, and management traffic on VLAN 3, filters can
be applied accordingly to the different VLANs.

In the following example shown in

Figure 7-4

, Filter 2 is configured to allow local clients on

VLAN 20 to browse the Web, and Filter 3 is configured to allow local clients on VLAN 30 to
Telnet anywhere outside the local intranet. Filter 7 is configured to deny ingress traffic from
VLAN 70.

Figure 7-4 VLAN-based Filtering

STOP

Web Switch

Internet

Unique Filters per
VLAN (up to 2048)

VLAN 20

VLAN 30

VLAN 70

Filter 2

Filter 3

Filter 7