Manualshelf

User Manual

ManualsBrandsAlvarion Technologies ManualsElectronicsBreezeMax 4Motion Broadband Wireless System
131132133134135136137138139140
Chapter 4 - Operation and Administration Using the CLI NPU Configuration
4Motion 229 System Manual
Table 4-18: Parameters for Configuring Permit/Deny Rules for TCP/UDP Traffic
Parameter Description Example
Source IP
address
any Indicates that incoming
TCP/UDP traffic from any source
IP address is permitted or
denied.
npu(config-ext-nacl)#
permit tcp any any
npu(config-ext-nacl)# deny
udp any
host
<src-ip-ad
dress>
Indicates that incoming
TCP/UDP traffic from a specific
source IP address is permitted
or denied.
npu(config-ext-nacl)#
permit tcp host 1.1.1.1 any
npu(config-ext-nacl)# deny
udp host 1.1.1.1
<network-s
rc-ip>
<mask>
Indicates that incoming
TCP/UDP traffic is to be
permitted or denied for a
particular subnet.
npu(config-ext-nacl)#
permit tcp 1.1.1.0
255.255.255.0 any
npu(config-ext-nacl)# deny
udp 1.1.1.0 255.255.255.0
Source port [{gt
<port-numb
er
(1-65535)>
Indicates that incoming TCP/
UDP traffic is to be permitted or
denied from the source port for
which the port number is greater
than the value of this parameter.
npu(config-ext-nacl)#
permit tcp 1.1.1.0
255.255.255.0 gt 1111
npu(config-ext-nacl)# deny
udp host 1.1.1.1 gt 1010
[{lt
<port-numb
er
(1-65535)>
Indicates that incoming TCP/
UDP traffic is to be permitted or
denied from the source port for
which the port number is less
than the value of this parameter.
npu(config-ext-nacl)#
permit tcp 1.1.1.0
255.255.255.0 lt 1111
npu(config-ext-nacl)# deny
udp host 1.1.1.1 lt 1010
[{eq
<port-numb
er
(1-65535)>
Indicates that incoming TCP/
UDP traffic is to be permitted or
denied from the source port for
which the port number is equal
to the value of this parameter.
npu(config-ext-nacl)#
permit tcp 1.1.1.0
255.255.255.0 eq 8080
npu(config-ext-nacl)# deny
udp host 1.1.1.1 eq 4040
range
<port-numb
er
(1-65535)>
<port-numb
er
(1-65535)>
}]
Indicates that incoming TCP/
UDP traffic is to be permitted or
denied from the source port for
which the port number is within
the range specified by this
parameter.
npu(config-ext-nacl)#
permit tcp 1.1.1.0
255.255.255.0 range 1010
8080
npu(config-ext-nacl)# deny
udp host 1.1.1.1 range 1010
4040