Enterasys Networks 1G58x-09 User Manual
Page 777
Security Configuration Command Set
Configuring Access Lists
Matrix E1 Series (1G58x-09 and 1H582-xx) Configuration Guide
14-95
Command Syntax of the “no” Form
The “no” form of this command removes the defined access list or entry:
no access-list access-list-number [entry]
Command Type
Router command.
Command Mode
Global configuration: Matrix>Router(config)#
Command Defaults
•
If insert, replace, or move are not specified, the new entry will be appended
to the access list.
•
If source2 is not specified with move, only one entry will be moved.
•
If icmp-type and icmp-code are not specified, ICMP parameters will be applied
to all ICMP message types.
•
If operator and port are not specified, access parameters will be applied to all
TCP or UDP ports.
•
If established is not specified, TCP restriction will be applied to all
connections.
operator port
(Optional) Applies access rules to TCP or UDP source or
destination port numbers. Possible operands include:
•
lt port - Match only packets with a lower port number.
•
gt port - Match only packets with a greater port number.
•
eq port - Match only packets on a given port number.
•
neq port - Match only packets not on a given port
number.
•
range min-sport max-sport - Match only packets in the
range of source ports
•
range min-dport max-dport - Match only packets in the
range of destination ports.
established
(Optional) Applies TCP restrictions to established
connections only.