Accton Technology ES4626 Switch User Manual


  Open as PDF
of 523
 
243
[no] {deny | permit} icmp {{<sIpAddr>
<sMask>} | any-source | {host-source
<sIpAddr>}} {{<dIpAddr> <dMask>} |
any-destination | {host-destination
<dIpAddr>}} [<icmp-type> [<icmp-code>]]
[precedence <prec>] [tos <tos>]
Create an extended
name-based ICMP IP access
rule; the “no” form command
deletes this name-based
extended IP access rule
[no] {deny | permit} igmp {{<sIpAddr>
<sMask>} | any-source | {host-source
<sIpAddr>}} {{<dIpAddr> <dMask>} |
any-destination | {host-destination
<dIpAddr>}} [<igmp-type>] [precedence
<prec>] [tos <tos>]
Create an extended
name-based IGMP IP access
rule; the “no” form command
deletes this name-based
extended IP access rule
[no] {deny | permit} tcp {{<sIpAddr> <sMask>}
| any-source | {host-source <sIpAddr>}}
[s-port <sPort>] {{<dIpAddr> <dMask>} |
any-destination | {host-destination
<dIpAddr>}} [d-port <dPort>] [ack | fin | psh |
rst | syn | urg] [precedence <prec>] [tos <tos>]
Create an extended
name-based TCP IP access
rule; the “no” form command
deletes this name-based
extended IP access rule
[no] {deny | permit} udp {{<sIpAddr> <sMask>}
| any-source | {host-source <sIpAddr>}}
[s-port <sPort>] {{<dIpAddr> <dMask>} |
any-destination | {host-destination
<dIpAddr>}} [d-port <dPort>] [precedence
<prec>] [tos <tos>]
Create an extended
name-based UDP IP access
rule; the “no” form command
deletes this name-based
extended IP access rule
[no] {deny | permit} {eigrp | gre | igrp | ipinip |
ip | <int>} {{<sIpAddr> <sMask>} | any-source |
{host-source <sIpAddr>}} {{<dIpAddr>
<dMask>} | any-destination | {host-destination
<dIpAddr>}} [precedence <prec>] [tos <tos>]
Create an extended
name-based IP access rule for
other IP protocols; the “no” form
command deletes this
name-based extended IP
access rule
c. Exit extended IP ACL configuration mode
Command Explanation
Extended IP ACL Mode
Exit
Exit extended name-based IP ACL
configuration mode
2. Configuring packet filtering function
(1) Enable global packet filtering function
Command Explanation
Global Mode
firewall enable Enable global packet filtering function
 previous next