Config acl rule match srcl4port keyword, Config acl rule match srcl4port keyword 221, Config acl rule match srcl4port number – Intel BLADE SERVER IXM5414E Manuale d'uso

Command Line Interface Management

221

Format

config acl rule match srcip <aclid> <rulenum> <ipaddr> <ipmask>

config acl rule match srcl4port keyword

Use this command to specify a source layer 4 port match condition for the ACL rule referenced by
the <aclid> and <rulenum> parameters. The <portkey> uses a single keyword notation and has the
possible values of domain, echo, ftp, ftpdata, http, smtp, snmp, Telnet, tftp and www. Each of these
values translates into its equivalent port number, which is used as both the start and end of the port
range.

This command and the config acl match srcl4port number command are two methods of
specifying the source layer 4 port range as a match condition. Either command can be used to
configure or modify the source layer 4 port range.

Format

config acl rule match srcl4port keyword <aclid> <rulenum> <portkey>

config acl rule match srcl4port number

Use this command to specify a packet’s source layer 4 port match condition for the ACL rule
referenced by the <aclid> and <rulenum> parameters. The <startport> and <endport> parameters
identify the first and last ports that are part of the port range and have values from 0 to 65535. The
ending port must have a value equal or greater than the starting port. The starting port, ending port
and all ports in between will be part of the contiguous source port range.

Either this command or config acl match srcl4port keyword can be used to specify a source layer 4
port range as a match criterion.

Format

config acl rule match srcl4port range <aclid> <rulenum> <startport> <endport>

show acl detailed

Use this command to display an ACL and all of the rules that are defined for the ACL. The <aclid>
is the number used to identify the ACL.

Format

show acl detailed <aclid>

Rule Number

Displays the number identifier for each rule that is defined for the ACL.

Action

Displays the action that will be taken if a packet matches the rule's criteria. The
choices are permit or deny.

Protocol

Displays which IP protocol (if any) is a match condition for the rule. The possible
values are ICMP, IGMP, IP, TCP, and UDP.

Source IP Address

Displays the source IP address (if any) that is a match condition for this rule.

Source IP Mask

Displays the source IP mask (if any) that is a match condition for this rule.

Source Ports

Displays the source port range (if any) that is a match condition for this rule.

Service Type Field Match

Indicates whether an IP DSCP, IP Precedence or IP TOS match condition is
specified for this rule.

Service Type Field Value

Indicates the value specified for the Service Type Field Match (IP DSCP, IP
Precedence or IP TOS) if it a match condition for this rule.