Brocade Fabric OS Command Reference Manual Supporting Fabric OS v7.0.0 (April 2011)

452 Fabric OS Command Reference
53-1001764-01
ipFilter
22
switch:admin> ipfilter --show
Name: default_ipv4, Type: ipv4, State: active
Name: default_ipv4, Type: ipv4, State: active
Rule Source IP Protocol Dest Port Action
1 any tcp 22 permit
2 any tcp 23 permit
3 any tcp 897 permit
4 any tcp 898 permit
5 any tcp 111 permit
6 any tcp 80 permit
7 any tcp 443 permit
8 any udp 161 permit
9 any udp 111 permit
10 any udp 123 permit
11 any tcp 600 - 1023 permit
12 any udp 600 - 1023 permit
Name: ex2, Type: ipv4, State: defined
Rule Source IP Protocol Dest Port Action
1 10.32.69.99 tcp 23 permit
To add a rule for traffic of type FORWARD and to display the result:
switch:admin> ipfilter --addrule ex2 -rule 1 -sip \
10.32.69.99 -dp 23 -proto tcp -act permit -type fwd \
-dip 10.32.69.90
switch:admin> ipfilter --show -a
Legends: [Proto-Protocol, P-Permit, D-Deny, FWD-FORWARD, I/P-INPUT]
Name: default_ipv4, Type: ipv4, State: active
Rule Source_IP Proto Dest_Port Action Flow Destination_IP
1 any tcp 22 P I/P any
2 any tcp 23 P I/P any
3 any tcp 897 P I/P any
4 any tcp 898 P I/P any
5 any tcp 111 P I/P any
6 any tcp 80 P I/P any
7 any tcp 443 P I/P any
8 any udp 161 P I/P any
9 any udp 111 P I/P any
10 any udp 123 P I/P any
11 any tcp 600-1023 P I/P any
12 any udp 600-1023 P I/P any
Name: default_ipv6, Type: ipv6, State: active
Rule Source_I Proto Dest_Port Action Flow Destination_IP
1 any tcp 22 P I/P any
2 any tcp 23 P I/P any
3 any tcp 897 P I/P any
4 any tcp 898 P I/P any
5 any tcp 111 P I/P any
6 any tcp 80 P I/P any
7 any tcp 443 P I/P any
8 any udp 161 P I/P any
9 any udp 111 P I/P any
10 any udp 123 P I/P any
11 any tcp 600-1023 P I/P any