Filter
Top Products
9-22
Cisco ONS 15600 Reference Manual, R7.2
Chapter 9 Management Network Connectivity
9.5 External Firewalls
•
Gateway (172.20.214.92) is the gateway address. All outbound traffic belonging to this network is
sent to this gateway.
•
Interface (cpm0) indicates that the ONS 15600 Ethernet interface is used to reach the gateway.
Entry 3 shows the following:
•
Destination (172.20.214.92) is the destination host IP address.
•
Mask (255.255.255.255) is a 32-bit mask, meaning only the 172.20.214.92 address is a destination.
•
Gateway (127.0.0.1) is a loopback address. The host directs network traffic to itself using this
address.
•
Interface (lo0) indicates that the local loopback interface is used to reach the gateway.
Entry 4 shows the following:
•
Destination (172.20.214.93) is the destination host IP address.
•
Mask (255.255.255.255) is a 32-bit mask, meaning only the 172.20.214.93 address is a destination.
•
Gateway (0.0.0.0) means the destination host is directly attached to the node.
•
Interface (pdcc0) indicates that a SONET DCC interface is used to reach the destination host.
Entry 5 shows a DCC-connected node that is accessible through a node that is not directly connected:
•
Destination (172.20.214.94) is the destination host IP address.
•
Mask (255.255.255.255) is a 32-bit mask, meaning only the 172.20.214.94 address is a destination.
•
Gateway (172.20.214.93) indicates that the destination host is accessed through a node with the IP
address 172.20.214.93.
•
Interface (pdcc0) indicates that a SONET DCC interface is used to reach the gateway.
9.5 External Firewalls
This section provides sample access control lists for external firewalls. Table 9-7 lists the ports that are
used by the TSC.
Table 9-7 Ports Used by the TSC
Port Function Action
1
0Never used D
20 FTP D
21 FTP control D
22 SSH (Secure Shell) D
23 Telnet D
80 HTTP D
111 SUNRPC (Sun Remote Procedure Call) D
161 SNMP traps destinations D
162 SNMP traps destinations D
513 rlogin D
683 CORBA IIOP OK