Network Service Groups
Network services can be organized into service groups, so that a single rule can apply to multiple network services. The table below lists the predefined service groups in SunScreen and the services that each group includes. Note that some services are members of more than one group, and other services are not included in any service group.
The common group compiles to list every service within the group in a specific order based on state-engine precedence. When a packet comes through, it tries to match each state engine in order of its precedence.
Note -
See "* Service" for information about the * service, which has some of the characteristics of a service group.
Table C-2 SunScreen Network Service Groups
|
Service Group Name |
Member Services |
|---|---|
|
common |
tcp all udp all syslog dns rpc all nfs prog icmp all rip ftp rsh real audio pmap udp all pmap tcp all rpc tcp all nis archie traceroute ping |
|
daytime |
daytime daytime-udp |
|
discard |
discard discard-udp |
|
echo |
echo echo-udp |
|
HA |
HA heartbeat HA administration |
|
ipsec |
esp ah isakmp |
|
mosaic |
www ssl gopher ftp archie |
|
netbios |
netbios name netbios datagram netbios session |
|
nfs |
mountd nfs prog rquota nlm status nfs acl |
|
nfs readonly |
mountd nfs readonly prog rquota nlm status nfs acl |
|
nis |
ypserv yppasswd ypupdate ypbind |
|
time |
time time-udp |
|
tsolpeerinfo |
tsolpeerinfo_tcp tsolpeerinfo_udp |
- © 2010, Oracle Corporation and/or its affiliates