Brocade Communications Systems RFS6000 User Manual

Page 461

Advertising

Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide

459

53-1001931-01

Extended ACL config commands

Parameters

8021p
<vlan-priority-value>

Sets the 802.1p VLAN user priority value to <vlan-priority-value>
(0-7).

dscp
<dscp-codepoint-value>

Sets the Differentiated Services Code Point code-point value to
<dscp-codepoint-value> (0-63)

tos <tos-value>

Sets the TOS value to <tos-value>. The least significant two bits of
the <tos-value> must be 0.

ip
[<source-IP/Mask>|any|ho
st <IP>] [<dest-IP/Mask>|
any|host <IP>] {log}
{rule-precedence
<1-5000>}

Use with mark command to mark a packet.

•

ip – Specifies an IP (to match to a protocol)

•

<source-IP/Mask>|any|host <IP> – The keyword
<source-IP> is the source IP address of the network or host
in dotted decimal format. The <mask> is the network mask.
For example, 10.1.1.10/24 indicates the first 24 bits of the
source IP is used for matching.

•

any – any is an abbreviation for a source IP of 0.0.0.0 and
source-mask bits equal to 0

•

host – host is an abbreviation for the exact source <IP>
(A.B.C.D format) and source-mask bits equal to 32

•

<dest-IP/Mask>|any|host <IP> – Defines the destination
host IP address or destination network address.

•

log – Generates log messages when the packet coming from
the interface matches an ACL entry. Log messages are
generated only for router ACLs.

•

rule-precedence <1-5000> – Defines an integer value
between 1-5000. This value sets the rule precedence in the
ACL.

icmp
[<source-IP/mask>|any|ho
st <IP>]
[<dest-IP/Mask>|any|
host <IP>] {<ICMP-type>
{<ICMP-code>}} {log}
{rule-precedence
<1-5000>]}

Use with the mark command to mark ICMP packets

•

deny – Rejects ICMP packets

•

icmp – Specifies ICMP as the protocol

•

[<source-IP/mask>|any|host <IP>] – The source
<source-IP> is the source IP address of the network or host
(in dotted decimal format). The <Mask> is the network mask.
For example, 10.1.1.10/24 indicates the first 24 bits of the
source IP is used for matching.

•

any – any is an abbreviation for a source IP of 0.0.0.0 and
source-mask bits equal to 0

•

host – host is an abbreviation for exact source (A.B.C.D) and
source-mask bits equal to 32

•

[<dest-IP/Mask>|any|host <IP>] – Defines the destination
host IP address or destination network address

•

<ICMP-type> {<ICMP-code>} – Sets the ICMP type value
<ICMP-type> from 0 to 255, and is valid only for ICMP. The
ICMP code value <ICMP-code> is from 0 to 255, and is valid
only for protocol type icmp.

•

log – Generates log messages when the packet coming from
the interface matches the ACL entry. Log messages are
generated only for router ACLs.

•

rule-precedence <1-5000> – Defines an integer value
between 1-5000. This value sets the rule precedence in the
ACL.

Advertising

This manual is related to the following products:

RFS4000, RFS7000

Popular Brands

Popular manuals