System Management Guide Security
Edition: 01 3HE 11018 AAAC TQZZA 97
protocol-number — the protocol number for the match criterion, expressed in decimal,
hexadecimal, or binary. See Table 6 for the protocol IDs and descriptions for the IP
protocols.
Values [0 to 255]D
[0x0 to 0xFF]H
[0b0 to 0b11111111]B
protocol-name — the protocol name for the match criterion. See Table 6 for the protocol
IDs and descriptions for the IP protocols.
Values none, icmp, igmp, ip, tcp, egp, igp, udp, rdp, ipv6, ipv6-route,
ipv6-frag, idrp, rsvp, gre, ipv6-icmp, ipv6-no-nxt, ipv6-opts, iso-ip,
eigrp, ospf-igp, ether-ip, encap, pnni, pim, vrrp, l2tp, stp, ptp, isis,
crtp, crudp, sctp, mpls-in-ip, * - udp/tcp wildcard
router
Syntax router router-instance
router service-name service-name
no router
Context config>system>security>management-access-filter>ip-filter>entry
config>system>security>management-access-filter>ipv6-filter>entry
Description This command configures a router name or service ID to be used as a management access
filter match criterion.
The no form of the command removes the router name or service ID from the match criteria.
Parameters router-instance — specifies one of the following parameters for the router instance:
router-name — specifies a router name up to 32 characters to be used in the match
criteria
service-id — specifies an existing service ID to be used in the match criteria
Values 1 to 2147483647
service-name — specifies the service name of an existing service
Values up to 64 characters
src-ip
Syntax src-ip {ip-prefix/mask | ip-prefix netmask}
no src-ip
Context config>system>security>management-access-filter>ip-filter>entry
To Next Page
Loading...
