Security
94
System Management Guide
3HE 11018 AAAC TQZZA Edition: 01
action
Syntax action {permit | deny | deny-host-unreachable}
no action
Context config>system>security>management-access-filter>ip-filter>entry
config>system>security>management-access-filter>ipv6-filter>entry
Description This command creates the action associated with the management access filter match
criteria entry.
The action keyword is required. If no action is defined, the filter is ignored. If multiple action
statements are configured, the last one overwrites previous configured actions.
If the packet does not meet any of the match criteria, the configured default action is applied.
Default n/a
Parameters permit — specifies that packets matching the configured criteria will be permitted
deny — specifies that packets not matching the selection criteria will be denied
deny-host-unreachable — specifies that packets not matching the selection criteria will
be denied and a host unreachable message will be issued
dst-port
Syntax dst-port port [mask]
no dst-port
Context config>system>security>management-access-filter>ip-filter>entry
config>system>security>management-access-filter>ipv6-filter>entry
Description This command configures a destination TCP or UDP port number or port range for a
management access filter match criterion.
The no form of the command removes the destination port match criterion.
Default n/a
Parameters port — the source TCP or UDP port number as match criteria
Values 1 to 65535 (decimal)
mask — mask used to specify a range of destination port numbers as the match criterion
This 16-bit mask can be configured using the formats in Table 5.
To Next Page
Loading...
