User's Manual
Chapter 3 - Operation and Administration Using the CLI NPU Configuration
4Motion 191 System Manual
3.3.10.1.3.2.2Deleting a Permit/Deny Rule for TCP/UDP Traffic (Extended Mode)
Run the following commands to delete a Permit rule for TCP/UDP traffic from/to a
specific IP address/port:
npu(config-ext-nacl)# no permit tcp {any | host <src-ip-address> |
<src-ip-address> <src-mask>} [{gt <port-number (1-65535)> | lt
<port-number (1-65535)> |eq <port-number (1-65535)> | range
<port-number (1-65535)> <port-number (1-65535)>}] {any | host
<dest-ip-address> | <dest-ip-address> <dest-mask>} {gt <port-number
(1-65535)> | lt <port-number (1-65535)> | eq <port-number
(1-65535)> | range <port-number (1-65535)> <port-number
(1-65535)>}]
npu(config-ext-nacl)# no permit udp {any | host <src-ip-address> |
<src-ip-address> <src-mask>} [{gt <port-number (1-65535)> | lt
<port-number (1-65535)> |eq <port-number (1-65535)> | range
<port-number (1-65535)> <port-number (1-65535)>}] {any | host
<dest-ip-address> | <dest-ip-address> <dest-mask>} {gt <port-number
(1-65535)> | lt <port-number (1-65535)> | eq <port-number
(1-65535)> | range <port-number (1-65535)> <port-number
(1-65535)>}]
Run the following commands to delete a Deny rule for TCP/UDP traffic from/to a
specific IP address/port:
{gt
<port-number
(1-65535)>
| lt
<port-number
(1-65535)> |
eq
<port-number
(1-65535)>
| range
<port-number
(1-65535)>
<port-number
(1-65535)>}]
Indicates the destination port
to which TCP/UDP traffic is
permitted/denied.
Optional 0-65535 For details,
refer
Table 3-21
Command
Modes
Extended ACL configuration mode