Dell Force10 C150 Configuration Manual page 144
Ftos configuration guide ftos 8.4.2.7 e-series terascale, c-series, s-series (s50/s25)
Hide thumbs
Also See for Force10 C150:
- Manual (57 pages) ,
- Manual (66 pages) ,
- Quick start manual (33 pages)
Table of Contents
Advertisement
Step
Command Syntax
seq sequence-number
2
permit
} {
icmp | ip | tcp | udp
{
source mask
ip-address
any
host ip-address
|
[
port
port
order
[
] [
When you use the
many packets match the log entry and at what rate, the CP may become busy as it has to log these packets'
details.
TCP packets: To create a filter for TCP packets with a specified sequence number, use these commands in
the following sequence, starting in the CONFIGURATION mode:
Step
Command Syntax
ip access-list extended
1
access-list-name
seq sequence-number
2
permit
}
host ip-address
|
byte
log
[
] |
fragments
[
When you use the
many packets match the log entry and at what rate, the CP may become busy as it has to log these packets'
details.
UDP packets: To create a filter for UDP packets with a specified sequence number, use these commands
in the following sequence, starting in the CONFIGURATION mode:
Step
Command Syntax
ip access-list extended
1
access-list-name
seq sequence-number
2
permit
} {
udp
} {
source mask
host ip-address
any
|
mask
[
operator port
byte
log
[
] |
fragments
[
144
|
IP Access Control Lists (ACL), Prefix Lists, and Route-maps
deny
{
|
|
ip-protocol-number
}
any
host
|
|
} {
destination mask
|
} [
operator
count
byte
log
]] [
[
] |
]
monitor
fragments
] [
]
log
keyword, CP processor logs details about the packets that match. Depending on how
deny
{
|
tcp
any
{
|
source mask
count
}} [
order
monitor]
] [
] [
]
log
keyword, CP processor logs details about the packets that match. Depending on how
deny
{
|
ip-protocol-number
any
|
|
} {
destination
host ip-address
|
}
count
[
port
]] [
order
monitor
] [
] [
]
]
Command Mode
CONFIG-EXT-NACL
Command Mode
CONFIGURATION
CONFIG-EXT-NACL
Command Mode
Purpose
CONFIGURATION
Create a extended IP ACL and assign it a unique
name.
CONFIG-EXT-NACL
Configure an extended IP ACL filter for UDP
packets.
•
Purpose
Configure a drop or forward filter.
log and monitor options are supported on
•
E-Series only.
Purpose
Create an extended IP ACL and assign it a
unique name.
Configure an extended IP ACL filter for TCP
packets.
log and monitor options are supported on
•
E-Series only.
log and monitor options are supported on
E-Series only.
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
