ofilter question (fwd)

MegaZone (megazone@livingston.com)
Sat, 7 Sep 1996 19:45:58 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Robert Hanson: "Re: New PM2e problem (fwd)"
Previous message: MegaZone: "Re: New PM2e problem (fwd)"

Once upon a time David S. Yun shaped the electrons to say...
>I was trying to filter out some accesses to several specific hosts from our
>network and did the following in our portmaster IRX:
>
>add filter s1.out
>set filter s1.out 1 deny xxx.xxx.xxx.0/24 207.77.64.5/32
>set s1 ofilter s1.out
>save all
>reset s1
>
>This did not seem to work, it acts as if all the packets are getting
>filtered and we're not able to access the outside network. What am I doing
>wrong?

Remember ALL filters end in an implicit deny statement. So ANYTHING you do
not *explicitly* permit is denied.

-MZ

--
Livingston Enterprises - Chair, Department of Interstitial Affairs
Phone: 800-458-9966 510-426-0770 FAX: 510-426-8951 megazone@livingston.com
For support requests: support@livingston.com  <http://www.livingston.com/> 
Snail mail: 6920 Koll Center Parkway  #220, Pleasanton, CA 94566
See me in person: Internet Expo, Boston, MA, October 16-17, Booth 422 ;-)

Next message: Robert Hanson: "Re: New PM2e problem (fwd)"
Previous message: MegaZone: "Re: New PM2e problem (fwd)"