NoteExample 4
Goal
You are an administrator of your corporate Lotus Notes server (e.g., the server has the IP address 216.106.88.42). The server accepts incoming connections (Lotus Notes and SMTP) from the other servers and initiates the outgoing connection (Lotus Notes and SMTP). You want to monitor and count the Lotus Notes traffic and SMTP mail traffic. Let's assume that the Lotus Notes traffic uses TCP port 1352 and the SMTP protocol uses TCP port number 25.
Solution
You should create four filters.
| Filter 1. The outgoing Lotus Notes connections. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | Any | Any | 1352 | Yes | Count | |
| Filter 2. The outgoing SMTP mail. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | Any | Any | 25 | Yes | Count | |
| Filter 3. The incoming Lotus Notes connections. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | 1352 | Any | Any | Yes | Count | |
| Filter 4. The incoming SMTP mail. | ||||||||
| N Rule |
Type of IP protocol |
Source address |
Source port |
Destination address |
Destination port |
Both directions |
Action for packet |
Additional condition |
| 1 | TCP | My computer | 25 | Any | Any | Yes | Count | |
Note