Brocade-communications-systems RFS6000 Manual de usuario Pagina 454
- Pagina / 839
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
452 Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide
53-1001931-01
Extended ACL config commands
14
Parameters
deny ip
[<source-IP/Mask>|any|ho
st
<IP>][<dest-IP/Mask>|any|
host <IP>] {log}
{rule-precedence
<1-5000>}
Use with a deny command to reject IP packets
• deny – Sets the action type on an ACL
• ip – Specifies an IP (to match to a protocol)
• <source-ip/mask>|any|host <IP> – The keyword
<source-IP> is the source IP address of the network or host
in dotted decimal format. The <Mask> is the network mask.
For example, 10.1.1.10/24 indicates the first 24 bits of the
source IP is used for matching.
• any – any is an abbreviation for a source IP of 0.0.0.0 and
source-mask bits equal to 0
• host – host is an abbreviation for the exact source <ip>
(A.B.C.D format) and source-mask bits equal to 32
• <dest-IP/Mask>|any|host <IP> – Defines the destination
host IP address or destination network address.
• log – Generates log messages when the packet coming from
the interface matches an ACL entry. Log messages are
generated only for router ACLs.
• rule-precedence <1-5000> – Defines an integer value
between 1-5000. This value sets the rule precedence in the
ACL.
deny icmp
[<source-IP/Mask>|any|ho
st <IP>]
[<dest-IP/Mask>|any|host
<IP>] {<ICMP-type>
{<ICMP-code>}} {log}
{rule-precedence
<1-5000>}
Use with the deny command to reject ICMP packets
• deny – Rejects ICMP packets
• icmp – Specifies ICMP as the protocol
• [<source-ip/mask>|any|host <IP>] – The source
<source-IP> is the source IP address of the network or host
(in dotted decimal format). The <mask> is the network mask.
For example, 10.1.1.10/24 indicates the first 24 bits of the
source IP is used for matching.
• any – any is an abbreviation for a source IP of 0.0.0.0 and
source-mask bits equal to 0
• host – host is an abbreviation for exact source (A.B.C.D) and
source-mask bits equal to 32
• [<dest-IP/Mask>|any|host <IP>] – Defines the destination
host IP address or destination network address
• <ICMP-type> {<ICMP-code>} – Sets the ICMP type value
<ICMP-type> from 0 to 255, and is valid only for ICMP. The
ICMP code value <ICMP-code> is from 0 to 255, and is valid
only for protocol type icmp.
• log – Generates log messages when the packet coming from
the interface matches the ACL entry. Log messages are
generated only for router ACLs.
• rule-precedence <1-5000> – Optional. Defines an integer
value between 1-5000. This value sets the rule precedence
in the ACL.
- Brocade Mobility RFS4000 1
- RFS6000 and RFS7000 1
- Document History 2
- About This Document 13 3
- 1 Introduction 21 3
- 2 Common Commands 31 3
- 3 User Exec Commands 155 4
- 6 Crypto-isakmp Instance 327 6
- 14 Extended ACL Instance 449 9
- 15 Standard ACL Instance 471 9
- 17 DHCP Server Instance 507 10
- 18 DHCP Class Instance 543 10
- 19 Radius Server Instance 555 10
- 23 RFID Instance 739 13
- 24 SOLE Instance 753 13
- 25 Smart RF Instance 767 13
- About This Document 15
- How to use this guide 16
- Document conventions 17
- Command syntax conventions 19
- Notice to the reader 20
- Web support sites 21
- 1Introduction 23
- CLI Modes 24
- Command Description 27
- Basic conventions 28
- Deleting entries 30
- Command output pagination 31
- Controlling Capitalization 31
- 2Common Commands 33
- Common commands 38
- – high temperature limit 41
- – low temperature limit 41
- – URL to which to copy 41
- Display 62
- Usage Guidelines 67
- 000 msec, dispersion 0.00 86
- 53-1001931-01 100
- • Mobility RFS7000 Controller 106
- • Mobility RFS4000 Controller 106
- • Mobility RFS6000 Controller 107
- Common Commands 126
- User exec commands 158
- Parameters 160
- 4Privileged Exec Commands 171
- TABLE 4 Priv Exec Commands 172
- Priv Exec command 175
- If Untar fails..? 175
- Global Configuration Commands 219
- Global Configuration commands 220
- Global Config Commands 220
- {authport <1024-65535>} 222
- (config)# 239
- (config)# crypt-map instance 239
- WID, using (config)# mode 260
- • 0 – Disables aging 268
- 6Crypto-isakmp Instance 329
- Crypto ISAKMP config commands 342
- 7Crypto-group Instance 343
- Crypto Group config commands 351
- 8Crypto-peer Instance 353
- Crypto Peer config commands 362
- 9Crypto-ipsec Instance 363
- Crypto IPSec config commands 370
- 10Crypto-map Instance 373
- Crypto Map config commands 379
- [ipaddress 383
- <host name>] 383
- 11Crypto-trustpoint Instance 389
- 12Interface Instance 405
- Interface config commands 406
- Interface Config Commands 406
- How src-dst-mac mode works 421
- How src-dst-ip mode works 421
- 13Spanning tree-mst Instance 437
- Extended ACL config commands 454
- Permitting IP based traffic 467
- Permitting ICMP based traffic 468
- Configuring IP Extended ACL 471
- 15Standard ACL Instance 473
- {log} {rule-precedence 475
- <1-5000>} 475
- Standard ACL config commands 476
- 16Extended MAC ACL Instance 489
- Configuring MAC Extended ACL 507
- 17DHCP Server Instance 509
- TABLE 17 DHCP Config Commands 510
- Creating a DHCP User Class 513
- DHCP Config commands 537
- Creating network pool 540
- Creating a Host Pool 541
- network 192.168.0.0/24 542
- <type> 543
- Creating a DHCP Option 544
- 18DHCP Class Instance 545
- Creating a DHCP user class 552
- 19Radius Server Instance 557
- Radius configuration commands 558
- RADIUS Server Command Summary 558
- RFController# 566
- RFController(config)# 566
- (config-radsrv) mode 570
- Example–creating a group 573
- 20Wireless Instance 591
- Command Description Ref 592
- (config-wireless) instance 593
- Configuring a client 614
- • Enable NAC for a WLAN 615
- • Undo a configuration 615
- Converting an AP to sensor 619
- {<MAC>} 649
- {<ap-index>} 664
- {logout-on-browser-close} 684
- {auth-port <port>} 684
- {auth-port <port>} 684
- {acct-port 685
- <port>} 685
- {port <1-65535>} 685
- {limit <0-8192>} 685
- .d>&port=<x> 690
- 21RTLS Instance 707
- RTLS config commands 721
- 22ESPI Instance 731
- ESPI config commands 740
- 23RFID Instance 741
- RFID config commands 751
- 24SOLE Instance 755
- SOLE config commands 765
- 25Smart RF Instance 769
- Role config commands 819
- 27AAP IP Filtering 821
- AAP IP Filter config commands 825
Relacionado con productos y manuales para Hardware Brocade-communications-systems RFS6000
(16 paginas)© 2020, manymanuals.es. Todos los derechos reservados | 0.047 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales