D-Link DGS-1510 Series Reference Manual page 58
Gigabit ethernet smartpro switch
Hide thumbs
Also See for DGS-1510 Series:
- Web ui reference manual (430 pages) ,
- Getting started manual (65 pages) ,
- Hardware installation manual (64 pages)
Table of Contents
Advertisement
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
ICMP-MESSAGE
Default
None.
Command Mode
IP Access-list Configuration Mode.
Command Default Level
Level: 12.
Usage Guideline
If a rule entry is created without a sequence number, a sequence number will be automatically
assigned. If it is the first entry, the sequence number 10 is assigned. A subsequent rule entry will be
assigned a sequence number that is 10 greater than the largest sequence number in that access list
and is placed at the end of the list.
The user can use the command access-list sequence to change the start sequence number and
increment number for the specified access list. After the command is applied, the new rule without
specified sequence number will be assigned sequence based new sequence setting of the specified
access list.
When you manually assign the sequence number, it is better to have a reserved interval for future
lower sequence number entries. Otherwise, it will create extra effort to insert an entry with a lower
sequence number.
The sequence number must be unique in the domain of an access-list. If you enter a sequence
number that is already present, an error message will be shown.
To create a matching rule for an IP standard access list, only the source IP address or destination IP
address fields can be specified.
Example
This example shows how to create four entries for an IP extended access list, named Strict-Control.
These entries are: permit TCP packets destined to network 10.20.0.0, permit TCP packets destined to
host 10.100.1.2, permit all TCP packets go to TCP destination port 80 and permit all ICMP packets.
Switch# configure terminal
Switch(config)# ip extended access-list Strict-Control
Switch(config-ip-ext-acl)# permit tcp any 10.20.0.0 0.0.255.255
Switch(config-ip-ext-acl)# permit tcp any host 10.100.1.2
Switch(config-ip-ext-acl)# permit tcp any any eq 80
Switch(config-ip-ext-acl)# permit icmp any any
Switch(config-ip-ext-acl)#
This example shows how to create two entries for an IP standard access-list, named "std-ip". These
entries are: permit IP packets destined to network 10.20.0.0, permit IP packets destined to host
10.100.1.2.
the message code is from 0 to 255.
(Optional) Specifies the ICMP message. The pre-defined
parameters are available for selection: administratively-
prohibited,alternate-address,conversion-error,host-prohibited,net-
prohibited,echo,echo-reply,pointer-indicates-error,host-
isolated,host-precedence-violation,host-redirect,host-tos-
redirect,host-tos-unreachable,host-unknown,host-unreachable,
information-reply,information-request,mask-reply,mask-
request,mobile-redirect,net-redirect,net-tos-redirect,net-tos-
unreachable, net-unreachable,net-unknown,bad-length,option-
missing,packet-fragment,parameter-problem,port-
unreachable,precedence-cutoff, protocol-unreachable,reassembly-
timeout,redirect-message,router-advertisement,router-
solicitation,source-quench,source-route-failed, time-
exceeded,timestamp-reply,timestamp-request,traceroute,ttl-
expired,unreachable.
55
- Quick Links:
- Basic Cli Commands
Hide quick links:
Advertisement
Table of Contents
