Siemens SCALANCE XM-400

To Next Page

To Previous Page

Security and authentication

11.4 IP access control list

SCALANCE XM-400/XR-500 Command Line Interface (CLI)

850 Configuration Manual, 06/2016, C79000-G8976-C252-11

Parameter

Description

Range of values / note

Keyword for a specific port number

(eq:equal).

range

Keyword for a range of port numbers.

Following this, the first and last port

number of the range is specified.

any

Blocks all outgoing TCP segments

host

Keyword for a an individual IPv4 ad-

dress

dest-ip-address

Destination IPv4 address

Enter a valid IPv4 address.

dest-ip-address

Network destination address

Enter a valid combination of IPv4

address and subnet mask.

mask

Corresponding subnet mask

dscp

Keyword for the Differentiated Services

Codepoint

value

Value for the Differentiated Services

Codepoint

0 ... 63

ack

Blocks ACK segments

rst

Blocks RST segments

For information on names of addresses and interfaces, refer to the section "Interface

identifiers and addresses (Page 42)".

Result

The IP access list for TCP segments has been configured.

Note

Subnet mask for individual hosts

If you create the rule for a single system (one IPv4 address), specify the subnet mask

"255.255.255.255". As an alternative, you can specify the keyword "host" followed by the

IPv4 address.

Further notes

You delete an IP access control list with the no ip access-list standard <acl-num>

command.

You display the configuration of the access control list with the

show access-lists command.

Main Page

Siemens SCALANCE XM-400 - Page 850

Table of Contents

Other manuals for Siemens SCALANCE XM-400

Related product manuals