PSINet

11 Oct 2000

Home
Contact Support
Search
Quick Index

Filter Builder Help


Filter Builder v2.0

The format is universal for all routers listed below.

The addresses are given in address/mask form. For example:

Syntax:

source/mask:destination/mask:action

Where:

  • source = source network, subnet or host
  • mask = netmask in bits; 32 for a host, 24 for Class C Networks
  • destination = destination network, subnet or host
  • action = The action taken on this service, "p" for Permit and "d" for Deny

Example of selective filter:

0.0.0.0/0:206.128.14.2/32:p
Allows everyone (0.0.0.0/0) to machine (206.128.14.2/32)
0.0.0.0/0:0.0.0.0/0:d
Denies all connections to every machine on your network
What type of router/OS version are you using?
Cisco
Livingston
Compatible Systems
MorningStar
Proteon
Proteon OS Version
Farallon
Rockwell
Ascend
Router Specifics
Service this filter is for? LAN-ISDN or LAN-Dial
(Leased Line)
Cisco Input Filter
 Cisco Output Filter
Livingston Input Filter
 Livingston Output Filter
Proteon Input Filter
 Proteon Output Filter
MorningStar Serial IP
Nethopper WAN Interface
Email this filter Yes No
Email Address:
Add Filter CommentsYes No
(Comments appear immediately following the lines they reference.)
Anti-Spoofing? Yes No
Internal Networks Fill in your internal networks here.
Ex: 206.4.50.0/24


SMTP (Simple Mail Transfer Protocol - TCP Port 25)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

WWW (World Wide Web - TCP Port 80)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

FTP (File Transfer Protocol - TCP Port 20 to open, 21 for return)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

Telnet (Terminal Emulation over Networks - TCP Port 23)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

DNS (Domain Name Service - UDP Port 53)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

Named-Xfer (DNS Zone Transfers - TCP Port 53)
Block Allow Allow Out/Block In
Allow-sec1/sec2 Allow-ns/ns2 Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

ICMP (Internet Control Message Protocol - Ex: Ping)
Block Allow Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

Whois (Whois Database Service - TCP Port 43)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

Finger (TCP Port 79)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

NNTP (Network News Transfer Protocol - TCP Port 119)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

SNMP (Simple Network Management Protocol - UDP Port 161)
Block Allow Allow Out/Block In Allow PSI to Poll Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

POP3 (Post Office Protocol - TCP Port 110)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

IRC (Internet Relay Chat - TCP Port 6667)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

RIP (Routing Information Protocol - UDP Port 520)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

X11 (X-Windows, Common UNIX GUI - TCP Ports 6000-6100)
Block Allow Allow Out/Block In Selective Filter
(Source/Mask:Dest/Mask:Action)
In:Out:

NetBIOS (Outbound from UDP Ports 137,138)
Block Allow


TopHomeContact SupportSearchQuick Index