20 deny udp – CANOGA PERKINS 9175 Command Reference User Manual

33-14

Related Commands

deny

deny udp

deny icmp

deny igmp

33.20 deny udp

Use this command to reject UDP packets matching the IP filter.

Command Syntax

[<1-2147483646>] deny udp { source source-mask | any | host source } [ src-port operator

port ]{destination destination-mask any | host destination} [ dst-port operator port ] [ ip-precedence

precedence | dscp dscp ] [ fragments ] [ routed-packet ] [ options ] [ time-range time-range-name ]

[ stats ]

src-port: source port <0-65535>

dst-port: destination port <0-65535>

operator

˖including eq (equal to), lt (less than), gt (greater than), neq (not equal to), range

port: the port should be in the range <0-65535>

reference to command deny for other parameters

Command Mode

IP ACL configuration

Usage

The fragments will be invalid when the layer 4 information is specified (i.e. src-port).

Examples

This example shows how to create a filter in IP ACL to deny any UDP packets.

Switch(config-ip-acl)# 1 deny udp any any

This example shows how to create a filter in IP ACL to deny the UDP packets with the source IP 1.1.1.1,

source port 10, and destination port less than 2000.

Switch(config-ip-acl)# 2 deny udp host 1.1.1.1 src-port eq 10 any dst-port lt 2000

Related Commands

deny

deny tcp

deny icmp

deny igmp

CanogaOS Command Reference