Current IP Filters by Filter Rule Definition Name Workspace
The Current IP Filters By Filter Rule Definition Name workspace displays
the IP filters whose Filter Rule Definition Name matches the value specified
by the Filter Rule Definition Name attribute.
One of the ways to display the Current IP Filters by Filter Rule Definition
Name workspace is to do the following:
- Right-click the IPSec Tunnels navigator items for
a specific TCP/IP stack.
- Select Workspaces and select the Dynamic IP Tunnels workspace.
- From the Dynamic IP Tunnels With Byte Rate = 0 summary
table or the Dynamic IP Tunnels With Byte Rate >= 2048 summary
table, right-click a Link icon and select Current IP Filters By Filter Rule Definition Name. Rows
of data are displayed that match the rule name.
Summary information is displayed in the Current IP Filters by Filter Rule Definition Name summary table.
See Current IP Filters by Filter Rule Definition Name summary table for a list of other workspaces
that can be accessed by clicking the Link icon in the
summary table.
The Current IP Filters by Filter Rule Definition Name Workspace contains
the following views:
- Five Filters With Most Total Packets Matched: Displays
the five filters that have the highest number of total packets that matched
the filter's condition and action in the Current IP Filters table.
- Five Filters With Most Total Packets Denied By DENY:
Displays the five filters that have the highest number of total packets that
matched the filter's condition and for which the action was DENY.
- Five Filters With Most Total Packets Denied by Mismatch: Displays the five filters that have the highest number of total packets
that matched the filter's condition but did not match the filter's
action (for example, if a packet was sent "in the clear" but the action
was coded as IPSec). This view can provide an indication of a configuration
problem such as packets flowing in the clear when they should be encrypted.
- Current IP Filters by Filter Rule Definition Name summary table: Provides
performance and configuration data about currently active IP filters specified
by the Filter Rule Definition Name attribute.
Current IP Filters by Filter Rule Definition Name summary table
The Current IP Filters by Filter Rule Definition Name summary table provides
performance and configuration data about currently active IP filters that
have the specified Filter Rule Definition Name. Each row in the table represents
a single IP filter. The filters are displayed in the order that they would
be scanned by the TCP/IP stack when it compares them to packets.
For a complete list of the attributes available in the Current IP Filters
by Filter Rule Definition Name summary table, and a brief description of each,
see the Current IP Filters Attributes help panel.
The following additional workspaces can be accessed by clicking the Link icon in the Current IP Filters by Filter Rule Definition
Name summary table:
- Dynamic IP Tunnels by Tunnel ID Workspace (default):
This is a conditional link displayed in the list of available links only
if the filter type is DYNAMIC (4), NATTDYN (6), or NRF (7). This link navigates
to the Dynamic IP Tunnels workspace and shows tunnels that have a tunnel ID
that matches the tunnel ID associated with the selected filter.
- Current IP Filters In Scan Order By Same Page Workspace: This link navigates to the Current IP Filters in Scan Order Workspace and
shows the IP filters that have a page number that is the same as the page
for the selected filter. If the active filters have changed significantly
between collection intervals (for example, if the filter set in use was switched
or a large number of filters became inactive), this link might display a workspace
with no filters
- Current IP Filters by Destination Address Workspace:
This link causes a dialog box to be displayed that prompts you for a destination
IP address that is compared to the currently active filters for a TCP/IP stack.
The IP address input field in the dialog box is filled in by default with
the value from the Destination Address column for the
selected filter, but you can change this value to be another IPv4 or IPv6
address found on this TCP/IP stack. Specify an IP address that has the same
IP address version as the selected filter. If you specify an IPv6 address
and the selected filter has an IPv4 address, then the linked-to workspace
will not find any filters to display. With this address as input, this link
navigates to the Current IP Filters By Destination Address Workspace showing
the IP filters that match the destination IP address that you provided. Note
that if the Destination Address column in the summary
table is blank, the IP address input field in the dialog box is filled with
an IP address that has a value of zero (0) for all subnets in the address.
See also: