Manualshelf

3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
331332333334335336337338339340
340 CHAPTER 19: TRANSPARENT FIREWALL CONFIGURATION COMMANDS
Example
# Configure the aging time of the MAC forwarding table to 1800 seconds.
[SecBlade_FW] firewall transparent-mode aging-time 1800
firewall
transparent-mode
transmit
Syntax
firewall transparent-mode transmit { bpdu | dlsw | ipx }
undo firewall transparent-mode transmit { bpdu | dlsw | ipx }
View
System view
Parameter
bpdu: Bridge protocol data unit.
dlsw: Data link switching.
ipx: Internetwork packet exchange.
Description
Use the firewall transparent-mode transmit command to define the type of
packets that are allowed to pass.
Use the undo firewall transparent-mode transmit command to define the
type of packets that are not allowed to pass.
By default, the firewall filters out all packets.
Example
# Configure the transparent firewall to allow BPDU packets to pass.
[SecBlade_FW] firewall transparent-mode transmit bpdu
firewall unknown-mac Syntax
firewall unknown-mac { drop | flood }
undo firewall unknown-mac
View
System view
Parameter
drop: Drops the IP unicast, multicast and broadcast packets with unknown MAC
address.
flood: Floods the IP unicast, multicast and broadcast packets with unknown MAC
address to the interfaces in a specific security zone other than the interface
receiving the packet. The system saves the MAC address after receiving the ARP
response packet, and forwards subsequent packets through this MAC address.