Packet filters provide network-layer security to control the types of information sent between networks and hosts. Novell® BorderManager® supports Routing Information Protocol (RIP) filters, and packet forwarding filters to control the service and route information for the common protocol suites, including Internetwork Packet Exchange™ (IPX™) software and TCP/IP.
If you chose to secure the public interfaces of your Novell BorderManager server during installation, a set of default filters was configured at that time. If you performed an upgrade, the existing filters were retained and the default filters were added to the filter list.
The default filters block all traffic through the public interfaces except for the traffic being forwarded to and from an enabled Novell BorderManager service. Novell BorderManager creates exceptions to allow some selected services during installation. This section explains the tasks you must complete to configure packet filtering to allow additional services to be routed through the Novell BorderManager server. The TCP/IP filters can also be configured through Novell iManager.
This section describes the tasks required to set up an initial implementation of Novell BorderManager packet filtering. For planning and conceptual information about packet filtering, see Novell BorderManager 3.9 Proxy and Firewall Overview and Planning Guide . Make sure you understand this information before setting up and configuring packet filtering.
The following sections are discussed here: