Command Line Interface
728 1553-KDU 137 365 Uen D 2006-06-16
• source-port – Check the protocol source port field.
• destination-port – Check the protocol destination port field.
• port-bitmask – Protocol port of rule must match this bitmask.
(Range: 0-65535)
• control-flag – Check the field for control flags.
• flag-bitmask – Control flags of rule must match this bitmask.
(Range: 0-63)
Default Setting
None
Command Mode
IP Mask
Command Usage
• Packets crossing a port are checked against all the rules in the ACL until
a match is found. The order in which these packets are checked is
determined by the mask, not just the order in which the ACL rules were
entered.
•If dscp is entered, tos or precedence cannot be entered. Both tos
and precedence can be entered without dscp..
• Masks that include an entry for a Layer 4 protocol source port or
destination port can only be applied to packets with a header length of
exactly five bytes.
• The VLAN ID field is not specified in the IP or MAC mask commands
used for VLAN ACLs. The ECN330-switch automatically appends the
VID field for these masks when the VLAN ACL is bound to an interface.
To Next Page
Loading...
