Filtering on source IP address
The following figure shows how to define a firewall instance that contains one rule, which filters packets only on source IP address. This rule denies packets coming from the R2 router. It then applies the firewall instance to packets inbound on the dp0p1p1 interface.
To create an instance that filters on source IP address, perform the following steps in configuration mode.
Step | Command |
---|---|
Define the action of this rule. |
|
Define a rule that filters traffic on the 176.16.0.26 source IP address. |
|
Apply FWTEST-1 to inbound packets on dp0p1p1. |
|
Commit the configuration. |
|
Show the configuration. |
|