Re: (PM) pm3 filters

Andy Kirkham (ak@k2net.co.uk)
Sun, 12 Jul 1998 23:26:22 +0100 (BST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Thomas C Kinnen: "Re: (PM) b17"
Previous message: Tom: "RE: (PM) pm3 filters"

>
>
> >> Can anyone help out with pm3 filters. I want to create a filter that
> >> will only allow dial in users access to my Class C address and
>
> > Hi,
> >
> > You must not forget that if there is even one rule
> > and it's not empty, everything not permitted at
> > the end, is implied to be forbidden.
> > As a last rule are you permitting 0.0.0.0/0 0.0.0.0/0 IP ?
>
> Doesn't make any sense considering what is required here.
>
> Basically only one rule is required for an outbound filter for his
> users:
>
> permit 0.0.0.0/0 123.123.123.0/24 ip
>
> (where 123.123.123.0 is his class-C) to do what he wants.

Yep, I couldn't make sense either. However, I've tried your to no
avail. I am using RADIUS so I used two filters with the .in and
.out suffixes. I have checked the status of the port and they are
being applied ok. I writing here cos I tried the obvious ones without
success. I'll have another go thou with whats above.

Andy

-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.
Searchable list archive: <URL:http://www.livingston.com/Tech/archive/>

Next message: Thomas C Kinnen: "Re: (PM) b17"
Previous message: Tom: "RE: (PM) pm3 filters"