Dell Networking N4000 Series Configuration Manual page 613
Stackable layer 2 and 3 switches
Hide thumbs
Also See for Networking N4000 Series:
- Getting started manual (378 pages) ,
- Configuration manual (17 pages) ,
- Reference manual (2332 pages)
Table of Contents
Advertisement
Command
{deny | permit} {every |
ipv4-protocol
0-255
{{
|
every
srcip srcmask
|
} {
srcip
any | host
} [{range
portkey
startport
{
|
portkey
endport
{
|
{eq | neq | lt | gt}
portkey
0-65535
{
|
dstip dstmask
{
| any |
dstip
host
} [{range
portkey
startport
{
|
portkey
endport
{
|
{eq | neq | lt | gt}
portkey
0-65535
{
|
[flag [+fin | -fin] [+syn
| -syn] [+rst | -rst]
[+psh | -psh] [+ack | -
ack] [+urg | -urg]
[established]] [icmp-
icmp-type
type
[icmp-
icmp-code
code
] | icmp-
icmp-message
message
igmp-type
[igmp-type
[fragments] [precedence
precedence
tos
| tos
tosmask
[
] | dscp
dscp
]}} [time-range
time-range-name
] [log]
queue-id
[assign-queue
[{mirror | redirect}
unit/slot/port
] [rate-
rate burst-size
limit
Purpose
Enter the permit and deny conditions for the extended
ACL.
|
• {deny | permit}–Specifies whether the IP ACL rule
permits or denies the matching traffic.
}
ipv4-protocol
• {
} |
protocol to match for the IP ACL rule.
– IPv4 protocols: eigrp, gre, icmp, igmp, ip, ipinip, ospf,
} ]
tcp, udp, pim
– Every: Match any protocol (don't care)
}
srcip srcmask
•
} |
address and netmask to match for the IP ACL rule.
– Specifying "any" implies specifying
}]
srcmask
and
– Specifying "host A.B.C.D" implies
srcmask
and
• [{{eq | neq | lt | gt} {
startport endport
port match condition for the IP ACL rule. A destination
port number, which ranges from 0-65535, can be entered,
]
portkey
or a
]
domain, echo, ftp, ftp-data, http, smtp, snmp, telnet,
tftp, and www. Each of these keywords translates into its
equivalent destination port number.
– When "range" is specified, IP ACL rule matches only if
the layer 4 port number falls within the specified
portrange. The
]
identify the first and last ports that are part of the port
range. They have values from 0 to 65535. The ending
port must have a value equal or greater than the
]
starting port. The starting port, ending port, and all
ports in between will be part of the layer 4 port range.
number
every
|
|
srcip
| any | host
as "255.255.255.255" for IPv4.
as "0.0.0.0".
portkey
}]—Specifies the layer 4 destination
, which can be one of the following keywords:
startport
and
Configuring Access Control Lists
}—Specifies the
—Specifies a source IP
srcip
as "0.0.0.0"
srcip
as "A.B.C.D"
number
|
} | range
endport
parameters
613
Hide quick links:
Advertisement
Table of Contents
