Config acl rule match dstl4port number, Config acl rule match dstl4port number 220, Config acl rule match every – Intel BLADE SERVER IXM5414E Manuale d'uso

220

Intel® Blade Server Ethernet Switch Module IXM5414E: Installation and User’s Guide:A Guide for Technically

This command and the config acl match destl4port number command are two methods of
specifying the destination layer 4 port range as a match condition. Either command can be used to
configure or modify the destination layer 4 port range.

Format

config acl rule match dstl4port keyword <aclid> <rulenum> <portkey>

config acl rule match dstl4port number

Use this command to specify a destination layer 4 port match condition for the ACL rule referenced
by the <aclid> and <rulenum> parameters. The <startport> and <endport> parameters identify the
first and last ports that are part of the port range. They have values from 0 to 65535. The ending port
must have a value equal to or greater than the starting port. The starting port, ending port and all
ports in between will be part of the destination port range.

Either this command or the config acl match destl4port keyword command may be used to specify
a destination layer 4 port range as a match condition.

Format

config acl rule match dstl4port range <aclid> <rulenum> <startport> <endport>

config acl rule match every

Use this command to specify a match condition in which all packets will be considered to match the
ACL rule referenced by the <aclid> and <rulenum> parameter. If the parameter <true/false> is set to
<true>, all packets will be either permitted or denied based on the action setting for the rule and no
other match conditions may be specified. Specifying <false> allows other match conditions to be
specified.

Format

config acl rule match every <aclid> <rulenum> <true/false>

config acl rule match protocol keyword

Use this command to specify the IP protocol of a packet as a match condition for the ACL rule
referenced by the <aclid> and <rulenum> parameters. The <protocolkey> parameter identifies the
protocol using a single keyword notation and has the possible values of ICMP, IGMP, IP, TCP and
UDP. A protocol keyword of ip is interpreted to match all protocol number values.

Either this command or the config acl match protocol number command can be used to specify an
IP protocol value as a match criterion.

Format

config acl rule match protocol keyword <aclid> <rulenum> <protocolkey>

config acl rule match protocol number

Use this command to specify a protocol number as a match condition for the ACL rule referenced by
the <aclid> and <rulenum> parameters. The <protocolnum> parameter identifies the protocol by
number. The protocol number is a standard value assigned by IANA and is an integer from 0 to 255.

Either this command or the config acl match protocol keyword command can be used to specify an
IP protocol value as a match criterion.

Format

config acl rule match protocol number <aclid> <rulenum> <protocolnum>
<protocolmask>

config acl rule match srcip

Use this command to specify a packet’s source IP address and Mask as a match condition for the
ACL rule referenced by the <aclid> and <rulenum> parameters. The <ipaddr> and <ipmask>
parameters are 4-digit dotted-decimal numbers which represent the source IP address and IP mask,
respectively.