Brocade Fabric OS Command Reference (Supporting Fabric OS v7.3.0) User Manual
Page 545
Fabric OS Command Reference
515
53-1003131-01
ipFilter
2
4 any tcp 443 permit
5 any udp 161 permit
6 any udp 123 permit
7 any tcp 600 - 1023 permit
8 any udp 600 - 1023 permit
Name: ex1, Type: ipv6, State: active
Rule Source IP Protocol Dest Port Action
1 fec0:60:69bc:60:260:69ff:fe80:d4a tcp 23 permit
To create an IPv4-type IP filter policy:
switch:admin> ipfilter --create ex2 -type ipv4
To add a rule to the created policy "ex2":
switch:admin> ipfilter --addrule ex2 -sip 10.32.69.99 \
-dp 23 -proto tcp -act permit
To display the IP filter policies, including the new policy:
switch:admin> ipfilter --show
Name: default_ipv4, Type: ipv4, State: active
Name: default_ipv4, Type: ipv4, State: active
Rule Source IP Protocol Dest Port Action
1 any tcp 22 permit
2 any tcp 23 permit
3 any tcp 80 permit
4 any tcp 443 permit
5 any udp 161 permit
6 any udp 123 permit
7 any tcp 600 - 1023 permit
8 any udp 600 - 1023 permit
Name: ex2, Type: ipv4, State: defined (modified)
Rule Source IP Protocol Dest Port Action
1 10.32.69.99 tcp 23 permit
To save the IP Filter policy "ex2" (the status of the policy changes from modified to defined after the
policy is saved):
switch:admin> ipfilter --save ex2
switch:admin> ipfilter --show
Name: default_ipv4, Type: ipv4, State: active
Name: default_ipv4, Type: ipv4, State: active
Rule Source IP Protocol Dest Port Action
1 any tcp 22 permit
2 any tcp 23 permit
3 any tcp 80 permit
4 any tcp 443 permit
5 any udp 161 permit
6 any udp 123 permit
7 any tcp 600 - 1023 permit
8 any udp 600 - 1023 permit
Name: ex2, Type: ipv4, State: defined
Rule Source IP Protocol Dest Port Action
1 10.32.69.99 tcp 23 permit