Current IP Filters by Filter Rule Definition Name Workspace
The Current IP Filters By Filter Rule Definition Name workspace
displays the IP filters whose Filter Rule Definition Name matches
the value specified by the Filter Rule Definition Name attribute.
One of the ways to display the Current IP Filters by Filter Rule
Definition Name workspace is to do the following:
- Right-click the IPSec Tunnels navigator
items for a specific TCP/IP stack.
- Select Workspaces and select the Dynamic IP Tunnels Workspace.
- From the Dynamic IP Tunnels With Byte Rate =
0 Summary Table or the Dynamic IP Tunnels With
Byte Rate >= 2048 Summary Table, right-click a Link icon and select Current IP
Filters By Filter Rule Definition Name. Rows of data are displayed
that match the rule name.
Summary information is displayed in the Current IP Filters by Filter Rule Definition Name Summary Table. See Current IP Filters by Filter Rule Definition Name Summary Table for a list of other workspaces
that can be accessed by clicking the Link icon
in the summary table.
The Current IP Filters by Filter Rule Definition Name Workspace
contains the following views:
- Five Filters With Most Total Packets Matched:
Displays the five filters that have the highest number of total packets
that matched the filter's condition and action in the Current
IP Filters table.
- Five Filters With Most Total Packets Denied By
DENY: Displays the five filters that have the highest number
of total packets that matched the filter's condition and for
which the action was DENY.
- Five Filters With Most Total Packets Denied by
Mismatch: Displays the five filters that have the highest number
of total packets that matched the filter's condition but did
not match the filter's action (for example, if a packet was sent "in
the clear" but the action was coded as IPSec). This view can
provide an indication of a configuration problem such as packets flowing
in the clear when they should be encrypted.
- Current IP Filters by Filter Rule Definition Name Summary Table:
Provides performance and configuration data about currently active
IP filters specified by the Filter Rule Definition Name attribute.
Current IP Filters by Filter Rule Definition Name Summary Table
The Current IP Filters by Filter Rule Definition Name Summary Table
provides performance and configuration data about currently active
IP filters that have the specified Filter Rule Definition Name. Each
row in the table represents a single IP filter. The filters are displayed
in the order that they would be scanned by the TCP/IP stack when it
compares them to packets.
For a complete list of the attributes available in the Current
IP Filters by Filter Rule Definition Name Summary Table, and a brief
description of each, see the Current IP Filters Attributes help panel.
The following additional workspaces can be accessed by clicking
the Link icon in the Current IP Filters by Filter
Rule Definition Name Summary Table:
- Dynamic IP Tunnels by Tunnel ID Workspace:
This is a conditional link displayed in the list of available links
only if the filter type is DYNAMIC (4), NATTDYN (6), or NRF (7).
This link navigates to the Dynamic IP Tunnels workspace and shows
tunnels that have a tunnel ID that matches the tunnel ID associated
with the selected filter.
- Current IP Filters In Scan Order By Same Page
Workspace: This link navigates to the Current IP Filters in Scan Order Workspace and shows the IP filters
that have a page number that is the same as the page for the selected
filter. If the active filters have changed significantly between
collection intervals (for example, if the filter set in use was switched
or a large number of filters became inactive), this link might display
a workspace with no filters
- Current IP Filters by Destination Address Workspace (default):
This link causes a dialog box to be displayed that prompts you for
a destination IP address that is compared to the currently active
filters for a TCP/IP stack. The IP address input field in the dialog
box is filled in by default with the value from the Destination
Address column for the selected filter, but you can change this
value to be another IPv4 or IPv6 address found on this TCP/IP stack.
Specify an IP address that has the same IP address version as the
selected filter. If you specify an IPv6 address and the selected filter
has an IPv4 address, then the linked-to workspace will not find any
filters to display. With this address as input, this link navigates
to the Current IP Filters By Destination Address Workspace showing
the IP filters that match the destination IP address that you provided.
Note that if the Destination Address column
in the summary table is blank, the IP address input field in the dialog
box is filled with an IP address that has a value of zero (0) for
all subnets in the address.
See also: