Note
Example 4
Goal
You are an administrator of your corporate Lotus Notes server
(e.g., the server has the IP address 216.106.88.42). The server
accepts incoming connections (Lotus Notes and SMTP) from the other
servers and initiates the outgoing connection (Lotus Notes and
SMTP). You want to monitor and count the Lotus Notes traffic and
SMTP mail traffic. Let's assume that the Lotus Notes traffic uses
TCP port 1352 and the SMTP protocol uses TCP port number 25.
Solution
You should create four filters.
| Filter 1. The outgoing Lotus Notes connections. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | Any | Any | 1352 | Yes | Count | |
| Filter 2. The outgoing SMTP mail. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | Any | Any | 25 | Yes | Count | |
| Filter 3. The incoming Lotus Notes connections. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | 1352 | Any | Any | Yes | Count | |
| Filter 4. The incoming SMTP mail. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | 25 | Any | Any | Yes | Count | |
Note