Ruijie Networks RG-S2600E Series Cli Reference Manual page 885

S2600E CLI Reference Guide
Default
configuration
Command
mode
Usage
guidelines
Chapter 1 ACL Configuration Commands
VID vid
ethernet-type
match-all
tcp-flag
text
N/A.
Global configuration mode.
To filter the data by using the access control list, you must
first define a series of rule statements by using the access
list. You can use ACLs of the appropriate types according
to the security needs:
The standard IP ACL (1 to 99, 1300 to 1999) only controls
the source IP addresses.
The extended IP ACL (100 to 199, 2000 to 2699) can
enforce strict control over the source and destination IP
addresses.
The extended MAC ACL (700 to 799) can match against
the source/destination MAC addresses and Ethernet type.
The extended expert access list (2700 to 2899) is a
combination of the above and can match and filter the
VLAN ID.
For the layer3 routing protocols including the unicast
routing protocol and multicast routing protocol, the
following parameters are not supported by the ACL:
precedence precedence/tos tos/fragments/range lower
upper/time-range time-range-name
The TCP Flag includes part or all of the following:

urg

ack

psh

rst

syn
Match the specified VID.
Ethernet type
Match all the bits of the TCP
flag.
Match the TCP flag.
Remark information