CLI Reference Guide ACL Configuration Commands
Packet precedence value (0 to 7)
The layer 4 port number range of the packet.
Time range of packet filtering, named tm-rng-name
Type of service (0 to 15)
ICMP message type (0 to 255)
ICMP message type code (0 to 255)
ICMP message type name (0 to 255)
Operator (lt-smaller, eq-equal, gt-greater, neq-unequal, range-range)
port indicates the port number. Dyadic operation needs two port numbers,
while other operators only need one port number
Physical address of the source host
Physical address of the destination host
Ethernet protocol type. 0x value can be entered.
Match all bits of the TCP flag.
Filter the incoming packets of the interface
Filter the outgoing packets of the interface
rule: Hexadecimal value field; mask: Hexadecimal mask field
offset: Refer to the offset table
“+” sign indicates at least one group
Output the matching syslog when the packet matches the ACL rule.
The fields in the packet are as follows:
AA AA AA AA AA AA BB BB BB BB BB BB CC CC DD DD
DD DD EE FF GG HH HH HH II II JJ KK LL LL MM MM
NN NN OO PP QQ QQ RR RR RR RR SS SS SS SS TT TT
UU UU VV VV VV VV WW WW WW WW XY ZZ aa aa bb bb
The corresponding offset table is as follows:
To Next Page
Loading...
Need help?
General