User's Manual

8. In the drop-down Parser Group list, select one of the configured parser domain names (in this example,

“forti_domain”).

9. Click Apply.

In the CLI

Use these CLI commands to define a syslog parser domain and the rule to be applied in the route-mode

example shown in Figure 240

esiparserdomainname

peerpeer-ip

serveripaddr

esiparserrulerule-name

conditionexpression

domainname

enable

match{ipaddrexpression|macexpression|userexpression}

positionposition

set{blacklist|rolerole}

For example:

esiparserdomainforti_domain

server10.168.172.3

esiparserruleforti_virus

condition“log_id=[0-9]{10}[]”

matchipaddr“src=(.*)[]”

setblacklist

enable

Sample NAT-mode ESI Topology

This section describes the configuration for a sample NAT-mode topology using the controller and three

external captive-portal servers. NAT mode uses a trusted interface for each external captive-portal server and a

different destination port to redirect a packet to a port other than the original destination port in the packet.

An example topology is shown below in Figure 242.

Dell Networking W-Series ArubaOS 6.4.x | User Guide External Services Interface | 1010