Use the COUPLE rule to control access to authorize a connection between a virtual network interface card (NIC) and a guest LAN or Virtual Switch.
The format of the Rule is:
{ACCEPT | REJECT} requester COUPLE “Parms” [(“Options”]
Parms:
ownerid name [vidset] Options:
[DAY dayname[-dayname]] [EXPIRE mm/dd/yy [hh:mm:ss]] [GROUP] [HISTORY] [TIME hhmm hhmm] [PROMISCuous]
Accepts or rejects a request to COUPLE to a guest LAN or virtual switch.
Defines the set of requesting user IDs this rule is to govern. When the rule is specified without the GROUP option, requester is a user ID. Enter an asterisk (*) for requester to specify all user IDs. When specified with the GROUP option, requester is the name of a security group. Enter an * for requester to specify all user IDs in all security groups.
The DAY, EXPIRE, GROUP, HISTORY, and TIME options are explained in Common Rule Options.
Defines the owner user ID for a guest LAN. The reserved identifier “SYSTEM” is used here for a Virtual Switch resource access rule.
Defines the name of a guest LAN or Virtual Switch.
This parameter defines the set of VLAN ID qualifiers for a virtual switch that is VLAN aware. These qualifiers consist of a set of decimal numbers with values between 1 and 4096.
A set of VLAN IDs may consist of multiple numbers or ranges of numbers in a list. Each of the following examples is valid:
Specifies that Promiscuous Mode operation is allowed. When this mode is authorized, the network adapter intercepts data regardless of the IP address. The mode allows LAN sniffing to be used to investigate networking problems. It should be granted only when necessary, since it gives access to all data traversing the LAN segment.
|
Copyright © 2014 CA.
All rights reserved.
|
|