C613-50100-01 REV C Command Reference for x930 Series 1869
AlliedWare Plus™ Operating System - Version 5.4.6-1.x
IPV4 HARDWARE ACCESS CONTROL LIST (ACL) COMMANDS
ACCESS
-LIST (HARDWARE IP NUMBERED)
Mode Global Configuration
Default Any traffic on an interface controlled by a hardware ACL that does not explicitly
match a filter is permitted.
Usage This command creates an access-list for use with hardware classification, such as
when applying QoS. This command can be used to match ICMP packets, IP
protocols, or TCP/ UDP packets.
For ICMP packets, the <3000-3699> range IP hardware access-list will match any
ICMP packet that has the specified source and destination IP addresses and ICMP
type.
You may apply the any parameter if the source or destination IP address is not
important. The ICMP type is an optional parameter.
NOTE: Hardware ACLs will permit access unless explicitly denied by an ACL action.
ICMP Example To create an access-list that will permit ICMP packets with a source address of
192.168.1.0/24 with any destination address and an ICMP type of 5 enter the
following commands:
awplus# configure terminal
awplus(config)# access-list 3000 permit icmp 192.168.1.0/24 any
icmp-type 5
To destroy the access-list with an access-list identity of 3000 enter the following
commands:
awplus# configure terminal
awplus(config)# no access-list 3000
IP Example To create an access-list that will permit any type of IP packet with a source address
of 192.168.1.1 and any destination address, enter the commands:
awplus# configure terminal
awplus(config)# access-list 3000 permit ip 192.168.1.1/32 any
137 MPLS-in-IP / RFC4023
138 MANET Protocols / RFC-ietf-manet-iana-07.txt
139-252 Unassigned / IANA
253 Use for experimentation and testing / RFC3692
254 Use for experimentation and testing / RFC3692
255 Reserved / IANA
Table 37-1: IP protocol number and description (cont.)
Protocol Number Protocol Description [RFC]
To Next Page
Loading...
Need help?
General
