Filters

Id. This filter's unique identifier (ID). This ID is automatically generated by the system when a filter is created.  This ID is used in the 'rcIpFilterGlobalListTable' and 'rcIpFilterBaseListTable' when grouping one or more filters into a filter list.

Type. Used to indicate a particular type of filter. All IP filters are applied at the ingressing port. A 'global' filter is a filter that is applied to all packets regardless of the packet's source and destination addressing information. A 'destination' filter is a filter that requires the destination addressing information, and the source address can be a wild card.  A 'source' filter is a filter that requires source addressing information, and the destination address can be a wild card.

DstAddr. Destination IP address on which to filter.

DstMask. Destination IP subnet mask.

SrcAddr. Source IP address on which to filter.

SrcMask. Source IP subnet mask.

Name. This filter's name

ProtocolType. IP protocal ID to match.

SrcPort. TCP/UDP source port to match.

SrcOption. Type of matching to perform on the field 'rcIpFilterSrcPort.' For 'source' and 'destination' filters, this value can only be 'equal(1).'  Global filters can have options of equal, not equal, greater than, less than, or ignore.

DstPort. TCP/UDP destination port to match.

DstOption. Type of matching to perform on the field 'rcIpFilterDstPort.' For 'source' and 'destination' filters, this value can only be 'equal(1)'.  Global filters can have options of equal, not equal, greater than, less than, or ignore.

Mirror. Used to specify whether a packet matching this filter should be mirrored to the port specified by 'rcMirrorByPortMirrorPort.'

HighPriority. Used to specify whether a packet matching this filter should be forwarded with high priority.

TcpConnect. Used to specify whether a TCP packet matching this filter should be accepted.  Pass only those matching TCP packets with either the ACK bit or RST bit set.  Apply only if the IP Protocol is set to TCP.

IeeeVlanPriority. Used to specify the priority bits for explicit IEEE VLAN tag for a packet matching this filter. If this priority bit field is greater than the priority field currently in the IEEE tag in the Packet Header, this priority field will be loaded into the Packet Header.

UsePktLimit. Used to specify whether the 'rcIpFilterPktLimit' field in this entry should be used when applying this filter.

PktLimit. The count of packets matching the filter.

Mode. Used to specify the operation mode for this entry.

If the port default action is 'drop,' a forward mode of matching filter will pass the packet. If the port default action is 'forward,' a drop mode of matching filter will pass the packet.

[Contents | Edit]


Global Set / Source/Destination Set

Name. Name of this filter list.

FilterIdList. Used to indicate the filter IDs of filters associated with this filter list.

[Contents | Edit]


Filtered Ports

FilterList. Used to indicate zero or more filter lists that are associated with this port.  Each filter list identifier is stored as two bytes in this array starting from offset zero.  Any unused bytes should be set to zero.

Enable. Used to indicate whether or not filtering is enabled on this port.

DefaultAction. Used to indicate the default action that should be performed when an IP filter applies to a particular port. When filters are not enabled on the port, the action is set to 'none' which means the port does not block any packet.  The 'none' setting cannot be used when PortEnable is true. On a port configured as 'forward,' any packet that does not match a filter is allowed to be forwarded. On a port configured as 'drop,' any packet that does not match a filter is dropped.

[Contents | Edit]