Deny Tcp - Dell C9000 Series Reference Manual
Networking command-line reference guide
Hide thumbs
Also See for C9000 Series:
- Configuration manual (9 pages) ,
- Networking configuration manual (1251 pages)
Table of Contents
Advertisement
deny tcp
Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria.
C9000 Series
Syntax
deny tcp {source mask | any | host ip-address} [bit] [operator
port [port]] {destination mask | any | host ip-address} [dscp]
[bit] [operator port [port]] [count [bytes]] [order] [fragments]
[log [interval minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:
Parameters
source
mask
any
host ip-address
dscp
bit
operator
•
Use the no seq sequence-number command if you know the filter's sequence
number.
•
Use the no deny tcp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.
Enter the IP address of the network or host from which the
packets are sent.
Enter a network mask in /prefix format (/x) or A.B.C.D. The mask,
when specified in A.B.C.D format, may be either contiguous or
non-contiguous.
Enter the keyword any to specify that all routes are subject to
the filter.
Enter the keyword host then the IP address to specify a host IP
address.
Enter this keyword dscp to deny a packet based on the DSCP
value. The range is from 0 to 63.
Enter a flag or combination of bits:
•
•
•
•
•
•
(OPTIONAL) Enter one of the following logical operand:
•
•
•
ack: acknowledgement field
fin: finish (no more data from the user)
psh: push function
rst: reset the connection
syn: synchronize sequence numbers
urg: urgent field
eq = equal to
neq = not equal to
gt = greater than
Access Control Lists (ACL)
296
Advertisement
Chapters
Table of Contents
