Infinet Wireless: Technical Documentation
Page tree

Versions Compared

Old Version 31

changes.mady.by.user Tatyana Drazhnikova

Saved on

compared with

New Version 32

changes.mady.by.user Tatyana Drazhnikova

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Center
ParameterDescription

add $NAME TYPE XXX ...

Creates an access list with "NAME" title and "TYPE" type. Lists names must start with $ symbol and can include up to 7 letters, digits and other symbols excluding spaces and semicolon. At the same time the command can contain several parameters of "TYPE" type which will be included in the list. If the list with this name has been already created listed parameters will be attached to this list.

del $NAME [XXX ...]

Removes specified parameters from the "NAME" list. If none of parameters are mentioned all list will be deleted.

ren $NAME1 $NAME2

Changes list's name from "NAME1" to "NAME2".

flush

Removes all lists
Accepted list types (TYPE)
net

Contains network addresses in dot format:

  • xxx.xxx.xxx.xxx  или  xxx.xxx.xxx.xxx/MASKLEN  or
  • xxx.xxx.xxx.xxx/xxx.xxx.xxx.xxx.

Lists of "net" type optimize their parameters by excluding duplicates and by having the feature that enables bigger networks include smaller networks. For example, if the list contained 1.1.1.1 parameter, when you include 1.1.1.0/24 parameter in the list 1.1.1.1 will be excluded.

Example:

Code Block
languagetext
themeEmacs
acl add $LIST1 net 10.0.0.0/8 192.168.0.0/16 5.5.5.5
acl del $LIST1 100.100.100.100/28
Reserved access lists

$ACLOCAL net

Reserved list List of IP addresses for access limitation to the device via telnet, ftpssh, http/https, snmp protocols (ports 22, 23, 80, 162, 443).

In case "$ACLOCAL" access list is in the configuration all attempts to establish a connection with the device from addresses (networks) that are not in this list will be rejected. There is no need to create rules.

Example:

Code Block
languagetext
themeEmacs
acl add $ACLOCAL net 10.0.0.0/8 192.168.0.0/16

$LOCAL net

All local IP addresses assigned to the device. It can be used to set filters to restrict/allow access to the device via telnet, ssh, http/https, snmp (ports 22, 23, 80, 162, 443). For detailed information about filters configuration see the ipfw command (IP Firewall) article.
Note
titleNOTE

From the MINTv1.90.36 and TDMAv2.1.10 software versions, the $ACLOCAL filter matching is not recorded in the system log, as it worked before. If you need to enable logging, use the "td log" command.

...

Center
Scroll Title
titleFigure- "mem" command output

Gliffy Diagram
displayNamemem command output
namemem command output
pagePin1

grep

The "grep" command searches the output of the given command for lines matching the given PATTERN and displays the result.

...