Manualshelf

User guide

ManualsBrandsRaritan ManualsConsumer electronicsPX-1000 Series
181182183184185186187188189190
Chapter 7: Using the Command Line Interface
171
config:# security ipAccessControl rule add <insert> <rule_number> <ip_mask> <option>
Variables:
<ip_mask> is the combination of the IP address and mask values. For
example, 192.168.94.222/24.
<option> is one of the options: accept, drop or reject.
Option Description
accept Accepts traffic from the specified IP address(es).
drop Discards traffic from the specified IP address(es),
without sending any failure notification to the
source host.
reject Discards traffic from the specified IP address(es),
and an ICMP message is sent to the source host
for failure notification.
<insert> is one of the options: insertAbove or insertBelow.
Option Description
insertAbove Inserts the new rule above the specified rule
number. Then:
new rule's number = the specified rule number
insertBelow Inserts the new rule below the specified rule
number. Then:
new rule's number = the specified rule number + 1
<rule_number> is the number of the existing rule which you want to
insert the new rule above or below.
Example
The following command adds a new IP access control rule and specifies
its location in the list.
config:# security ipAccessControl rule add 192.168.84.123/24 accept insertAbove 5
Results:
A new IP access control rule is added, allowing all packets from the IP
addrress 192.168.84.123 to be accepted.
The newly-added rule is inserted above the 5th rule. That is, the new
rule becomes the 5th rule, and the original 5th rule becomes the 6th
rule.