User's Manual
Chapter 3 - Operation and Administration Using the CLI NPU Configuration
4Motion 194 System Manual
3.3.10.1.3.3 Configuring Permit/Deny Rules for ICMP Traffic
After you have created an ACL, you can configure Permit/Deny rules for ICMP
traffic from/to specific a source and destination IP address/subnet.
This section describes the commands to be used for:
“Creating a Permit/Deny Rule for ICMP Traffic (Extended Mode)” on page 194
“Deleting a Permit/Deny Rule for ICMP Traffic (Extended Mode)” on page 197
3.3.10.1.3.3.1Creating a Permit/Deny Rule for ICMP Traffic (Extended Mode)
Run the following commands to specify the Permit/Deny rule for ICMP traffic
from/to a specific source/destination IP address/subnet:
any | host
<dest-ip-add
ress> |
<dest-ip-add
ress>
<dest-mask>
Indicates the NPU IP
address/subnet for which the
Permit/Deny rule for
TCP/UDP traffic is to be
deleted.
Mandatory N/A For details,
refer
Table 3-21
[{gt
<port-number
(1-65535)>
| lt
<port-number
(1-65535)>
|eq
<port-number
(1-65535)>
| range
<port-number
(1-65535)>
<port-number
(1-65535)>}]
Indicates the NPU interface
port for which the
Permit/Deny rule for incoming
TCP/UDP traffic is to be
deleted.
Optional 1-65535 For details,
refer
Table 3-21
Command
Modes
Extended ACL configuration mode
IMPORTANT
You cannot configure Permit or Deny rules for an ACL that is associated with a Qos marking rule.
You can either associate QoS marking rules or permit/deny rules with an ACL.