Cisco Nexus 5000 Series Command Reference Release 4.0(1a)N2(1) (OL-16599-01, March 2009)
Send comments to nx5000-docfeedback@cisco.com
6-53
Cisco Nexus 5000 Series Command Reference
OL-16599-01
Chapter 6 Security Commands
permit (IPv4)
permit (IPv4)
To create an IPv4 access control list (ACL) rule that permits traffic matching its conditions, use the
permit command. To remove a rule, use the no form of this command.
General Syntax
[sequence-number] permit protocol source destination {[dscp dscp] | [precedence precedence]}
[fragments] [log] [time-range time-range-name]
no permit protocol source destination {[dscp dscp] | [precedence precedence]} [fragments] [log]
[time-range time-range-name]
no sequence-number
Internet Control Message Protocol
[sequence-number] permit icmp source destination [icmp-message] {[dscp dscp] | [precedence
precedence]} [fragments] [log] [time-range time-range-name]
Internet Group Management Protocol
[sequence-number] permit igmp source destination [igmp-message] {[dscp dscp] | [precedence
precedence]} [fragments] [log] [time-range time-range-name]
Internet Protocol v4
[sequence-number] permit ip source destination {[dscp dscp] | [precedence precedence]}
[fragments] [log] [time-range time-range-name]
Transmission Control Protocol
[sequence-number] permit tcp source [operator port [port] | portgroup portgroup] destination
[operator port [port] | portgroup portgroup] {[dscp dscp] | [precedence precedence]}
[fragments] [log] [time-range time-range-name] [flags] [established]
User Datagram Protocol
[sequence-number] permit udp source [operator port [port] | portgroup portgroup] destination
[operator port [port] | portgroup portgroup] {[dscp dscp] | [precedence precedence]}
[fragments] [log] [time-range time-range-name]