Re: (ASCEND) Radius Filter

To: ascend-users@bungi.com
Subject: Re: (ASCEND) Radius Filter
From: "Oliver J. Albrecht" <olli@spike.allcon.net>
Date: Wed, 5 Nov 1997 22:05:12 +0100
In-Reply-To: <3460C93B.19808B92@xtension.net>; from Gerd Bohnenstengel on Wed, Nov 05, 1997 at 07:30:07PM +0000
References: <3460C93B.19808B92@xtension.net>
Sender: owner-ascend-users@max.bungi.com

On Wed, Nov 05, 1997 at 07:30:07PM +0000, Gerd Bohnenstengel wrote:

> does anybody have an working radius filter for
> dening ports ( not only ip based), like http oder telnet.
> 
> I will deny access for ex ip 10.0.0.1 port 80.

The following filter will block Port 80 and enable the rest, at least 
that's the way it worked back when I tested it... :)

[...]
     Ascend-Data-Filter = "ip in drop tcp dstip 0.0.0.0 dstport = 80",
     Ascend-Data-Filter = "ip in forward", 
     Ascend-Data-Filter = "ip out forward",
[...]

-- 
Oliver J. Albrecht <olli@allcon.net>

AllCon GmbH         Lise Meitner Str. 2        D-24941 Flensburg
EMail: allcon@allcon.net     Tel: +49 461 9992-162     Fax: -165
++ Ascend Users Mailing List ++
To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd:	<http://www.nealis.net/ascend/faq>

References:

(ASCEND) Radius Filter

From: Gerd Bohnenstengel <bo@xtension.net>

Prev by Date: (ASCEND) multiple logins
Next by Date: (ASCEND) MAX TNT and 1.3Ap6
Prev by thread: (ASCEND) Radius Filter
Next by thread: (ASCEND) Pipeline-15 questions
Index(es):
- Main
- Thread