18 match srcl4port, 19 match vlan – Fortinet 548B User Manual

- 372 -

7.21.2.18 match srcl4port

This command adds to the specified class definition a match condition based on the source layer 4 port
of a packet using a single keyword or numeric notation or a numeric range notation.

Syntax

match srcl4port {<portkey> | <0-65535>}

<portkey> is one of the supported port name keywords (listed below).

The currently supported <portkey> values are: domain, echo, ftp, ftpdata, http, smtp, snmp, telnet,
tftp, www. Each of these translates into its equivalent port number, which is used as both the start
and end of a port range.

To specify the match condition as a numeric value, one layer 4 port number is required. The port number
is an integer from 0 to 65535.

To specify the match condition as a range, two layer 4 port numbers are required and together they
specify a contiguous port range. Each port number is an integer from 0 to 65535, but with the added
requirement that the second number be equal to or greater than the first.

Default Setting

None

Command Mode

Class-Map Config / IPv6-Class-Map Config

7.21.2.19 match vlan

This command adds to the specified class definition a match condition based on the value of the layer 2
VLAN Identifier field (the only tag in a single tagged packet or the first or outer tag of a double VLAN
tagged packet). The VLAN ID is an integer from 1 to 4095.

i

This command is not available on the Broadcom 5630x platform.

Syntax

match vlan <1-4095>

Default Setting

None