Cisco AP775A - Nexus Converged Network Switch 5010 Command Reference Manual page 402
Cisco nexus 5000 series command reference, release 4.1(3)n1(1) (ol-16599-01, august 2009)
Hide thumbs
Also See for AP775A - Nexus Converged Network Switch 5010:
- Configuration manual (1486 pages) ,
- Reference (886 pages) ,
- Release note (26 pages)
Table of Contents
Advertisement
permit (IPv4)
S e n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a c k @ c i s c o . c o m
Syntax Description
sequence-number
protocol
source
destination
Cisco Nexus 5000 Series Command Reference
6-54
(Optional) Sequence number of the permit command, which causes the
switch to insert the command in that numbered position in the access list.
Sequence numbers maintain the order of rules within an ACL.
A sequence number can be any integer between 1 and 4294967295.
By default, the first rule in an ACL has a sequence number of 10.
If you do not specify a sequence number, the switch adds the rule to the end
of the ACL and assigns to it a sequence number that is 10 greater than the
sequence number of the preceding rule.
Use the resequence command to reassign sequence numbers to rules.
Name or number of the protocol of packets that the rule matches. Valid
numbers are from 0 to 255. Valid protocol names are the following
keywords:
•
icmp—Specifies that the rule applies to ICMP traffic only. When you
use this keyword, the icmp-message argument is available, in addition to
the keywords that are available for all valid values of the protocol
argument.
igmp—Specifies that the rule applies to IGMP traffic only. When you
•
use this keyword, the igmp-type argument is available, in addition to the
keywords that are available for all valid values of the protocol argument.
ip—Specifies that the rule applies to all IPv4 traffic. When you use this
•
keyword, only the other keywords and arguments that apply to all IPv4
protocols are available. They include the following:
–
dscp
fragments
–
log
–
precedence
–
time-range
–
tcp—Specifies that the rule applies to TCP traffic only. When you use
•
this keyword, the flags and operator arguments and the portgroup and
established keywords are available, in addition to the keywords that are
available for all valid values of the protocol argument.
•
udp—Specifies that the rule applies to UDP traffic only. When you use
this keyword, the operator argument and the portgroup keyword are
available, in addition to the keywords that are available for all valid
values of the protocol argument.
Source IPv4 addresses that the rule matches. For details about the methods
that you can use to specify this argument, see "Source and Destination" in
the "Usage Guidelines" section.
Destination IPv4 addresses that the rule matches. For details about the
methods that you can use to specify this argument, see "Source and
Destination" in the "Usage Guidelines" section.
Chapter 6
Security Commands
OL-16599-01
Advertisement
Table of Contents
