RE: (PM) portmaster 2e filters

Jason Hatch (zone@berkshire.net)
Mon, 19 Jan 1998 12:14:27 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Mia's Virtual Post Office: "(PM) C-T1 Pricing..."
Previous message: Jake Messinger: "Re: (usr-tc) Re: (PM) Max 4060, PM3, BAY 8000, AS3000 or USR"

Do these filters require numbers in them like the ifilters for synchronous
ports? If so, is it necessary to have an in and and out filter? I would
imagine the ifilter screens data coming from the user to the portmaster,
correct?

-Jason

On Mon, 19 Jan 1998, Chad Scott wrote:

> On Monday, January 19, 1998 3:53 AM, egemen ergel [SMTP:egemen.ergel@teklan.com.tr] wrote:
> > hi al
> > we have a portmaster 2e (30 port terminal server)
> >
> > how can i define filter for emailonly dialup accounts.
> >
> > i defined like this but doesnt work
> >
> > deny tcp dst 80
> > deny tcp dst 21
> > ....
> > like this.
> >
> > this filters name is emailonly
> > and i define users radius parameter (framed-filter) at the radius
> > server.
> >
> > maybe my filter is wrong..
>
> You need to define your filter like this for e-mail only:
> permit tcp dst eq 25
> permit tcp dst eq 110
>
> This will allow *only* SMTP and POP3. If you want to define them the way you have them above, you want something like:
>
> deny tcp dst eq 80
> deny tcp dst eq 21
> permit tcp
>
> ComOS assumes a "deny tcp" at the end of every filter, so you must specifically "allow" everything else.
>
> Chad Scott
> Network Operations
> Internet Direct, Incorporated
>
>
> -
> To unsubscribe, email 'majordomo@livingston.com' with
> 'unsubscribe portmaster-users' in the body of the message.
>

-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.

Next message: Mia's Virtual Post Office: "(PM) C-T1 Pricing..."
Previous message: Jake Messinger: "Re: (usr-tc) Re: (PM) Max 4060, PM3, BAY 8000, AS3000 or USR"