Command Line Interface
6951553-KDU 137 365 Uen D 2006-06-16
• protocol-number – A specific protocol number. (Range: 0-255)
• source – Source IP address.
• destination – Destination IP address.
• address-bitmask – Decimal number representing the address
bits to match.
• host – Keyword followed by a specific IP address.
• precedence – IP precedence level. (Range: 0-7)
• tos – Type of Service level. (Range: 0-15)
• dscp – DSCP priority level. (Range: 0-63)
• sport – Protocol source port number. Includes TCP, UDP or other
protocol types. (Range: 0-65535)
• dport – Protocol destination port number. Includes TCP, UDP or
other protocol types. (Range: 0-65535)
• port-bitmask – Decimal number representing the port bits to
match. (Range: 0-65535)
• control-flags – Decimal number (representing a bit string) that
specifies flag bits in byte 14 of the TCP header. (Range: 0-63)
• flag-bitmask – Decimal number representing the code bits to
match.
Default Setting
None
Command Mode
Extended ACL
Command Usage
• All new rules are appended to the end of the list.
• Address bitmasks are similar to a subnet mask, containing four integers
from 0 to 255, each separated by a period. The binary mask uses 1 bits
to indicate “match” and 0 bits to indicate “ignore.” The bitmask is bitwise
To Next Page
Loading...
