Dell Force10 TeraScale E Series Reference Manual page 248

seq
c e s
Syntax
Parameters
248 | Access Control Lists (ACL)
Assign a sequence number to a deny or permit filter in an extended IP access list while creating the
filter.
seq sequence-number {deny | permit} {ip-protocol-number | icmp | ip | tcp | udp}
{source mask | any | host ip-address} {destination mask | any | host ip-address} [operator
port [port]] [count [byte] | log] [dscp value] [order] [monitor] [fragments]
sequence-number
Enter a number from 0 to 4294967290.
deny
Enter the keyword
permit
Enter the keyword
criteria.
ip-protocol-number
Enter a number from 0 to 255 to filter based on the protocol identified in the IP
protocol header.
icmp
Enter the keyword
ip
Enter the keyword
that the access list will permit all IP protocols.
tcp
Enter the keyword
udp
Enter the keyword
source
Enter the IP address of the network or host from which the packets were sent.
mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in
A.B.C.D format, may be either contiguous or non-contiguous.
any
Enter the keyword
host ip-address
Enter the keyword
operator
(OPTIONAL) Enter one of the following logical operands:
•
•
•
•
•
port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if
using the
Range: 0 to 65535
The following list includes some common TCP port numbers:
•
•
•
•
destination Enter the IP address of the network or host to which the packets are sent.
message-type
(OPTIONAL) Enter an ICMP message type, either with the type (and code, if
necessary) numbers or with the name of the message type (ICMP message types are
listed in
Range: 0 to 255 for ICMP type; 0 to 255 for ICMP code
count
(OPTIONAL) Enter the keyword
byte
(OPTIONAL) Enter the keyword
deny
to configure a filter to drop packets meeting this condition.
permit
to configure a filter to forward packets meeting this
icmp
to configure an ICMP access list filter.
ip
to configure a generic IP access list. The keyword
tcp
to configure a TCP access list filter.
udp
to configure a UDP access list filter.
any
to specify that all routes are subject to the filter.
host
followed by the IP address to specify a host IP address.
eq
= equal to
neq
= not equal to
gt
= greater than
lt
= less than
range
= inclusive range of ports (you must specify two ports for the
parameter.)
range
logical operand.
23 = Telnet
20 and 21 = FTP
25 = SMTP
169 = SNMP
Table 9-2).
count
byte
to count packets processed by the filter.
to count bytes processed by the filter.
ip
specifies
port