Manualshelf

Owner's Manual

ManualsBrandsDell ManualsComputer equipmentPowerConnect 6024F
71727374757677787980
78 ACL Commands
www.dell.com | support.dell.com
Syntax
permit
{
any
| protocol-ip} {
any
|
source
source-wildcard } {
any
|
destination
destination-
wildcard } [
dscp
dscp-number |
ip-precedence
ip-precedence]
permit-tcp
{
any
|
source
source-wildcard } {
any
| source-port} {
any
|
destination
destination-wildcard } {
any
| destination-port} [
dscp
dscp-number |
ip-precedenc
e ip-
precedence]
permit-udp
{
any
|
source
source-wildcard } {
any
| source-port} {
any
|
destination
destination-wildcard } {
any
| destination-port} [
dscp
dscp-number |
ip-precedence
ip-
precedence]
Source IP address can be one of the following:
any
—Packets received from any IP address.
source
source-wildcard
—IP address and wildcard for host from which the packet is
sent. Specify the IP address as 0.0.0.0 and mask as 255.255.255.255.
Destination IP address can be one of the following:
any
—Packets sent to any IP address.
destination
destination-wildcard
—IP address and wildcard for host to which the
packet is sent. Specify the IP address as 0.0.0.0 and mask as 255.255.255.255.
protocol
—The name or the number of an IP protocol. Use
?
to see list of available
protocols (
icmp
,
igmp
,
ip
,
tcp
,
egp
,
igp
,
udp
,
hmp
,
rdp
,
idpr
,
ipv6
,
ipv6-route
,
ipv6-frag
,
idrp
,
rsvp
,
gre
,
esp
,
ah
,
ipv6-icmp
,
eigrp
,
ospf
,
ipip
,
pim
,
l2tp
,
isis
), use
any
for all
protocols.
destination-port
—Specifies the UDP/TCP destination port. Use
any
for all ports.
source-port
—Specifies the UDP/TCP source port. Use
any
for all ports.
dscp
—Matches
dscp number
with the packet DSCP value.
precedence
—Matches
ip-precedence
with the packet ip-precedence value.
Default Configuration
This command has no default configuration.
Command Mode
IP Access-list Configuration mode
User Guidelines
When an access control entry (ACE) is added to an access control list, an implied
deny-any-
any
condition exists at the end of the list. If there are no matches, the packets are denied.
However, before the first ACE is added, the list permits all packets.