Toolpack:Create Sbc Access Rule A

From TBwiki
(Difference between revisions)
Jump to: navigation, search
(List of Parameters)
(removed filters to its separate article)
Line 2: Line 2:
  
 
{{DISPLAYTITLE:Create Session Border Gateway Access Rules and Filters}}
 
{{DISPLAYTITLE:Create Session Border Gateway Access Rules and Filters}}
 
'''Firewall Rules'''
 
  
 
In addition to the default access rules that are included with the SBC, one or more custom rules can be created and their priority in a series of rules can be set. To add a new rule or to change its priority, do the following:
 
In addition to the default access rules that are included with the SBC, one or more custom rules can be created and their priority in a series of rules can be set. To add a new rule or to change its priority, do the following:
Line 28: Line 26:
 
<br/><br/>
 
<br/><br/>
  
'''Firewall Filters'''
 
 
To customize the actions of a firewall rule, you can add one or more filters to the rule.
 
 
1-To define what the rule will do, click '''Create New Filter'''.
 
 
[[Image:Sbc_Rule_2a.png]]
 
<br/><br/>
 
 
2-Enter values for the filter.
 
*Click '''Create'''
 
 
[[Image:Sbc_Rule_3.png]]
 
<br/><br/>
 
 
 
'''To change the priority of an access rule, use the arrow icons.'''
 
*To increase the priority of an access rule, use either the double or single arrow [[Image:Sbc_Rule_6.png]] to move the rule up by one position, or to the top of the list.
 
 
*To decrease the priority of an access rule, use either the double or single arrow [[Image:Sbc_Rule_7.png]] to move the rule down by one position, or to the bottom of the list.
 
 
 
'''Position of sample rule before it is moved'''
 
[[Image:Sbc_Rule_4.png]]
 
<br/><br/>
 
 
'''Position of sample rule after it is moved'''
 
[[Image:Sbc_Rule_5.png]]
 
 
<br/><br/>
 
<br/><br/>
  
 
<div class="mw-collapsible mw-collapsed" data-collapsetext="Northbound Interface" data-expandtext="Northbound Interface" style="width: 400px;">
 
<div class="mw-collapsible mw-collapsed" data-collapsetext="Northbound Interface" data-expandtext="Northbound Interface" style="width: 400px;">
  
'''Firewall Rule'''
 
  
 
'''Path'''
 
'''Path'''
Line 96: Line 65:
 
}
 
}
 
</pre>
 
</pre>
 
 
'''Firewall Filter'''
 
 
'''Path'''
 
<pre>
 
/configurations/@[configuration_name]/firewalls/firewall/rules/@[firewall_rule]]/filters/@[firewall_filter]
 
 
</pre>
 
 
'''Parameters (text)'''
 
<pre>
 
/configurations/@[configuration_name]/firewalls/firewall/rules/@[firewall_rule]/filters/@[firewall_filter]
 
 
custom_protocol            = 0
 
destination_ip              = "0.0.0.0"
 
destination_netmask        = "32"
 
destination_port            = "161"
 
entry_duration              = "15 minutes"
 
ip_interface                = ""
 
maximum_bandwidth          = "0 Bps"
 
maximum_bandwidth_packets  = "0 pps"
 
name                        = "@[firewall_filter]"
 
override_default_thresholds = false
 
protocol                    = "UDP"
 
source_ip                  = "0.0.0.0"
 
source_netmask              = "32"
 
source_port                = "0"
 
temporary_ban_duration      = "5 minutes"</pre>
 
 
 
'''Parameters (json)'''
 
Firewall Rule
 
<pre>
 
{
 
  "custom_protocol" : 0,
 
  "destination_ip" : "0.0.0.0",
 
  "destination_netmask" : "32",
 
  "destination_port" : "161",
 
  "entry_duration" : "15 minutes",
 
  "ip_interface" : "",
 
  "maximum_bandwidth" : "0 Bps",
 
  "maximum_bandwidth_packets" : "0 pps",
 
  "name" : "@[firewall_filter]",
 
  "override_default_thresholds" : false,
 
  "protocol" : "UDP",
 
  "source_ip" : "0.0.0.0",
 
  "source_netmask" : "32",
 
  "source_port" : "0",
 
  "temporary_ban_duration" : "5 minutes"
 
}
 
</pre>
 
 
 
</div>
 
</div>
  

Revision as of 12:15, 11 October 2016

Applies to version(s): v2.10

In addition to the default access rules that are included with the SBC, one or more custom rules can be created and their priority in a series of rules can be set. To add a new rule or to change its priority, do the following:

1-Click SBC in the navigation panel.

Sbc Enable 0.png

2-Click Create New Rule.

Sbc Rule 0.png

3-Enter values for the rule.

  • Click Create

Sbc Rule 1.png

4-Verify that Firewall rules were successfully created message is displayed.

Sbc Rule 2.png




Path 

/configurations/@[configuration_name]/firewalls/firewall/rules/@[firewall_rule]

Parameters (text) 

/configurations/@[configuration_name]/firewalls/firewall/rules/@[firewall_rule]
automatic           = true
description         = "Drop all packets reaching this rule when in DOS/DDOS mode"
enabled             = true
firewall_entry_type = "DDOS_PROTECTION"
name                = "DDOS_PROTECTION"
priority            = 4

/configurations/@[configuration_name]/firewalls/firewall/rules/@[firewall_rule]/filters


Parameters (json) Firewall Rule 

{
  "automatic" : true,
  "description" : "Drop all packets reaching this rule when in DOS/DDOS mode",
  "enabled" : true,
  "firewall_entry_type" : "DDOS_PROTECTION",
  "name" : "@[firewall_rule]",
  "priority" : 4,
  "filters" : {
  }
}

List of Parameters

SBC Rule

SBC Filter


Retrieved from "https://docs.telcobridges.com/mediawiki/index.php?title=Toolpack:Create_Sbc_Access_Rule_A&oldid=22007"
Personal tools