83
Cisco Nexus 5500 Series NX-OS Security Command Reference
OL-27883-02
Chapter D Commands
deny tcp (IPv6)
This syntax is equivalent to IPv6-address/128.
This example shows how to specify the source argument with the host keyword and the
2001:0db8:85a3:08d3:1319:8a2e:0370:7344 IPv6 address:
switch(config-acl)# deny tcp host 2001:0db8:85a3:08d3:1319:8a2e:0370:7344 any
• Any address—You can use the any keyword to specify that a source or destination is any IPv6
address. For examples of the use of the any keyword, see the examples in this section. Each example
shows how to specify a source or destination by using the any keyword.
TCP Port Names
When you specify the protocol argument as tcp, the port argument can be a TCP port number, which is
an integer from 0 to 65535. It can also be one of the following keywords:
• bgp—Border Gateway Protocol (179)
• chargen—Character generator (19)
• cmd—Remote commands (rcmd, 514)
• daytime—Daytime (13)
• discard—Discard (9)
• domain—Domain Name Service (53)
• drip—Dynamic Routing Information Protocol (3949)
• echo—Echo (7)
• exec—Exec (rsh, 512)
• finger—Finger (79)
• ftp—File Transfer Protocol (21)
• ftp-data—FTP data connections (2)
• gopher—Gopher (7)
• hostname—NIC hostname server (11)
• ident—Ident Protocol (113)
• irc—Internet Relay Chat (194)
• klogin—Kerberos login (543)
• kshell—Kerberos shell (544)
• login—Login (rlogin, 513)
• lpd—Printer service (515)
• nntp—Network News Transport Protocol (119)
• pim-auto-rp—PIM Auto-RP (496)
• pop2—Post Office Protocol v2 (19)
• pop3—Post Office Protocol v3 (11)
• smtp—Simple Mail Transport Protocol (25)
• sunrpc—Sun Remote Procedure Call (111)
• tacacs—TAC Access Control System (49)
• talk—Talk (517)
To Next Page
Loading...
