QTECH QSW-2800 Инструкция по настройке User Manual

Page 280

Advertising
background image

+7(495) 797-3311 www.qtech.ru
Москва, Новозаводская ул., 18, стр. 1

266

Standard IP ACL Mode

exit

Exits name-based standard IP

ACL configuration mode.

(4) Configuring an name-based extended IP access-list

a. Create an extended IP access-list basing on nomenclature

Command

Explanation

Global Mode

ip access-list extended <name>

no ip access-list extended <name>

Creates an extended IP access-

list basing on nomenclature; the
no ip access-list extended

<name>

“ command deletes the

name-based

extended

IP

access-list.

b. Specify multiple “permit” or “deny” rules

Command

Explanation

Extended IP ACL Mode

[no] {deny | permit} icmp {{<sIpAddr> <sMask>} | any-

source | {host-source <sIpAddr>}} {{<dIpAddr>

<dMask>} | any-destination | {host-destination

<dIpAddr>}} [<icmp-type> [<icmp-code>]] [precedence

<prec>] [tos <tos>][time-range<time-range-name>]

Creates an extended name-

based ICMP IP access rule; the

no form command deletes this

name-based

extended

IP

access rule.

[no] {deny | permit} igmp {{<sIpAddr> <sMask>} | any-

source | {host-source <sIpAddr>}} {{<dIpAddr>

<dMask>} | any-destination | {host-destination

<dIpAddr>}} [<igmp-type>] [precedence <prec>] [tos

<tos>][time-range<time-range-name>]

Creates an extended name-

based IGMP IP access rule; the

no form command deletes this

name-based

extended

IP

access rule.

[no] {deny | permit} tcp {{<sIpAddr> <sMask>} | any-

source | {host-source <sIpAddr>}} [s-port {<sPort> |

range <sPortMin> <sPortMax>}] {{<dIpAddr> <dMask>} |

any-destination | {host-destination <dIpAddr>}} [d-port

{<dPort> | range <dPortMin> <dPortMax>}]

[ack+fin+psh+rst+urg+syn] [precedence <prec>] [tos

<tos>][time-range<time-range-name>]

Creates an extended name-

based TCP IP access rule; the

no form command deletes this

name-based

extended

IP

access rule.

[no] {deny | permit} udp {{<sIpAddr> <sMask>} | any-

source | {host-source <sIpAddr>}} [s-port {<sPort> |

range <sPortMin> <sPortMax>}] {{<dIpAddr> <dMask>} |

any-destination | {host-destination <dIpAddr>}} [d-port

{<dPort> | range <dPortMin> <dPortMax>}] [precedence

Creates an extended name-

based UDP IP access rule; the

no form command deletes this

name-based

extended

IP

access rule.

Advertising
Popular Brands
Popular manuals