2 non-ipv4 acl commands – PLANET FGSW-2620VM User Manual

User’s Manual of FGSW-Series

184

<0-FF> specifies the protocol value.

<0-FF> specifies the protocol mask.

<0-FFFF> specifies the source port value.

<0-FFFF> specifies the source port mask.

<0-FFFF> specifies the destination port value.

<0-FFFF> specifies the destination mask.

e.g. acl add 1 qosvoip 1 7 1 1 0 0 0 0 0 0

6.16.2 Non-IPv4 ACL commands

no acl

<1-220> and show acl [<1-220>] commands are same as IPv4 ACL commands.

acl (add|edit) <1-220> (permit|deny) <0-4094> nonipv4 <0-65535>

Description:

Add or edit ACL group for non-IPv4.

Syntax:

acl (add|edit) <1-220> (permit|deny) <0-4094> nonipv4 <0-65535>

Parameters:

(add|edit) specifies the operation.

<1-220> specifies the group id.

(permit|deny) specifies the action. permit: permit packet cross switch; deny: drop packet.

<0-4094> specifies the VLAN id. 0 means don't care.

<0-65535> specifies the Ether Type. 0 means don't care.

e.g. acl add 1 deny 0 nonipv4 2054. This ACL rule will drop all packets for ether type is 0x0806 and non-IPv4.