85NetBotz Appliance User’s Guide
Example configurations
Example 1: Allow default SNMP traffic from only 192.168.20.21, and reject all other activity.
Filter 1: To accept UDP protocol network packets from IP address 192.168.20.21 on port 161.
[Filter Action] Accept
[IP Address] Include 192.168.20.21
[Protocol] Include UDP
[Port] Include
Filter 2: To reject all addresses that are exactly (over the full 32 bits of the address) "not
0.0.0.0". This effectively says "reject all".
[Filter Action] Reject
[IP Address] Exclude 0.0.0.0/32
[Protocol] Include All
[Port] <blank>
Example 2: Allow global access to the appliance, but allow only 192.168.20.21 to access the default
SNMP port on the appliance.
Filter 1: To reject all addresses using the UDP protocol on port 161 that are not the specific
address 192.168.20.21.
[Filter Action] Reject
[IP Address] Exclude 192.168.20.21
[Protocol] Include UDP
[Port] Include 80
Filter 2: To accept all TCP requests on port 443 from all addresses that are exactly not 0.0.0.0.
(TCP on port 443 is the definition of the HTTPS protocol.)
[Filter Action] Accept
[IP Address] Exclude 0.0.0.0/32
[Protocol] Include TCP
[Port] Include 443