ProLiant BL p-Class GbE2 Interconnect Switch ISCLI Reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProLiant BL p-Class C-GbE2 Interconnect Switch

131

132

133

134

135

136

137

138

139

140

Configuration Commands 132

ACL IP Version 4 Filter configuration

These commands allow you to define IPv4 matching criteria for an ACL. The following table describes the IP version 4

Filter Configuration commands.

Table 160 IPv4 Filter Configuration commands

Command Description

access-control list <1-4096>

ipv4 source-ip-address <IP

address> {<IP mask>}

Defines a source IP address for the ACL. If defined, traffic with this source IP

address will match this ACL. Specify an IP address in dotted decimal notation.

Command mode: Global configuration

access-control list <1-4096>

ipv4 destination-ip-address

<IP address> {<IP mask>}

Defines a destination IP address for the ACL. If defined, traffic with this

destination IP address will match this ACL.

Command mode: Global configuration

access-control list <1-4096>

ipv4 protocol <0-255>

Defines an IP protocol for the ACL. If defined, traffic from the specified protocol

matches this filter. Specify the protocol number. Listed below are some of the

well-known protocols.

Number Name

1 icmp

2 igmp

6 tcp

17 udp

89 ospf

112 vrrp

Command mode: Global configuration

access-control list <1-4096>

ipv4 type-of-service <0-255>

Defines a Type of Service value for the ACL. For more information on ToS, see

RFC 1340 and 1349.

Command mode: Global configuration

default access-control list

<1-4096> ipv4

Resets the IPv4 parameters for the ACL to their default values.

Command mode: Global configuration

show access-control list

<1-4096> ipv4

Displays the current IPV4 parameters.

Command mode: All except User EXEC

ACL TCP/UDP Filter configuration

These commands allow you to define TCP/UDP matching criteria for an ACL. The following table describes the

TCP/UDP Filter Configuration commands.

Table 161 TCP/UDP Filter Configuration commands

Command Description

access-control list <1-4096>

tcp-udp source-port

<1-65535> {<port mask>}

Defines a source port for the ACL. If defined, traffic with the specified TCP or

UDP source port will match this ACL. Specify the port number. Listed below are

some of the well-known ports:

Number Name

20 ftp-data

21 ftp

22 ssh

23 telnet

25 smtp

37 time

42 name

43 whois

53 domain

69 tftp

70 gopher

79 finger

80 http

Command mode: Global configuration