59
Cisco Nexus 5500 Series NX-OS Security Command Reference
OL-27883-02
Chapter D Commands
deny tcp (IPv4)
• ftp—File Transfer Protocol (21)
• ftp-data—FTP data connections (2)
• gopher—Gopher (7)
• hostname—NIC hostname server (11)
• ident—Ident Protocol (113)
• irc—Internet Relay Chat (194)
• klogin—Kerberos login (543)
• kshell—Kerberos shell (544)
• login—Login (rlogin, 513)
• lpd—Printer service (515)
• nntp—Network News Transport Protocol (119)
• pim-auto-rp—PIM Auto-RP (496)
• pop2—Post Office Protocol v2 (19)
• pop3—Post Office Protocol v3 (11)
• smtp—Simple Mail Transport Protocol (25)
• sunrpc—Sun Remote Procedure Call (111)
• tacacs—TAC Access Control System (49)
• talk—Talk (517)
• telnet—Telnet (23)
• time—Time (37)
• uucp—Unix-to-Unix Copy Program (54)
• whois—WHOIS/NICNAME (43)
• www—World Wide Web (HTTP, 8)
Examples This example shows how to configure an IPv4 ACL named acl-lab-01 with rules that deny all TCP traffic
from the 10.23.0.0 and 192.168.37.0 networks to the 10.176.0.0 network and a final rule that permits all
other IPv4 traffic:
switch(config)# ip access-list acl-lab-01
switch(config-acl)# deny tcp 10.23.0.0/16 10.176.0.0/16
switch(config-acl)# deny tcp 192.168.37.0/16 10.176.0.0/16
switch(config-acl)# permit ip any any
Related Commands Command Description
ip access-list Configures an IPv4 ACL.
permit (IPv4) Configures a permit rule in an IPv4 ACL.
remark Configures a remark in an IPv4 ACL.
show ip access-list Displays all IPv4 ACLs or one IPv4 ACL.
To Next Page
Loading...
