Adding A Tcp, Udp Or Sctp Filter Rule To The Current Access Control List Profile - Patton electronics SmartWare R.3.20 Software Configuration Manual

SmartWare Software Configuration Guide
The same effect can also be obtained by using the simpler message name option. See the following example.
node(cfg)#profile acl WanRx
node(pf-acl)[WanRX]#deny icmp any any msg echo
node(pf-acl)[WanRX]#exit
node(cfg)#
Adding a TCP, UDP or SCTP filter rule to the current access control list profile
The commands permit or deny are used to define a TCP, UDP or SCTP filter rule. Each TCP, UDP or SCTP
filter rule represents a respective access of control list entry.
This procedure describes how to create a TCP, UDP or SCTP access control list entry that permits access
Mode: Profile access control list
Step
node (pf-acl)[ name ]#permit {tcp | udp | sctp} { src src-wild-
1
card | any | host src } [{eq port | gt port | lt port | range
from to }] { dest dest-wildcard | any | host dest } [{eq port | gt
port | lt port | range from to }] [{cos group | cos-rtp group-
data group-ctrl }]
This procedure describes how to create a TCP, UDP or SCTP access control list entry that denies access
Mode: Profile access control list
Step
node (pf-acl)[ name ]#deny {tcp | udp | sctp} { src src-
1
wildcard | any | host src } [{eq port | gt port | lt port |
range from to }] { dest dest-wildcard | any | host dest } [{eq
port | gt port | lt port | range from to }] [{cos group | cos-
rtp group-data group-ctrl }]
Access control list configuration task list
Command
Command
18 • Access control list configuration
Purpose
Creates a TCP, UDP or SCTP
access of control list entry that
permits access defined according
to the command options
Purpose
Creates a TCP, UDP or SCTP
access of control list entry that
denies access defined according
to the command options
214