Manualshelf

User Guide

ManualsBrandsAlcatel-Lucent ManualsIP PhoneOmniAccess 3500
919293949596979899100
Chapter 5. Administrative Information Base
<Reject> (drop all packets matching the rule, and for each dropped
packet notify the corresponding sender).
ProtocolProtocol Identifier value carried by the packets that match
the rule. Options (choose one): <ANY>, <TCP>, <UDP>, <ICMP>.
Source IP/[Mask] — Range of IP addresses to be checked against the
source IP field in the packet header.
Source Port Low, Source Port High — Range of port values to be
checked against the source port field in the packet header.
Destination IP/[Mask] — Range of IP addresses to be checked against
the destination IP field in the packet header.
Destination Port Low, Destination Port High — Range of port values to
be checked against the destination port field in the packet header.
Interface Name — Network interface on the OmniAccess 3500 NLG
gateway where the packet filter rule applies. For the target interface,
the name must be consistent with the interface labels on the gateway’s
back panel (<WAN> and <LAN>).
Local Stack Direction — Packet direction with respect to the local IP
stack of the OmniAccess 3500 NLG gateway. Options (choose one):
<ANY> (the rule applies to traffic in any direction), <From> (the rule
only applies to traffic from the local IP stack, i.e., outgoing traffic),
<To> (the rule only applies to traffic to the local IP stack, i.e., incoming
traffic).
Tunnel Direction — This object enables the association of the packet
classification rule with a tunnel profile. Options (choose one): <None>
(no tunnel is to be associated with the rule, which is therefore strictly a
packet filtering rule), <To Tunnel> (packets matching the rule are
dispatched through an IPsec tunnel whose profile is identified by the
<To Tunnel> value; if an existing IPsec tunnel is not found for a
matching packet, the IPsec tunnel is created before the packet is
delivered), <From Tunnel> (packets matching the rule are received from
an IPsec tunnel whose profile is identified by the <From Tunnel> value;
if a remote request to open an IPsec tunnel is received on a packet
whose header matches the rule, the OmniAccess 3500 NLG gateway uses
the tunnel profile specified in the <From Tunnel> value to conduct the
subsequent negotiations).
To Tunnel — Name of the tunnel profile for the IPsec tunnel that
dispatches the matching packet.
From Tunnel — Name of the tunnel profile for the IPsec tunnel over
which the matching packet is received.
87