Filter
Top Products
DGS-3100 Series Gigabit Stackable Managed Switch CLI Manual
22
0
The lower the profile ID, the higher a priority of the rule.
add access_id <value 1-240> – Adds an additional rule to the above
specified access profile. The value specifies the relative priority of
the additional rule. Up to 240 different rules may be configured for
the IP access profile.
auto_assign – Configures the Switch to automatically assign
a numerical value (between 1 and 240) for the rule being
configured.
ip – Specifies that the Switch examines the IPv6 fields in each
packet to determine if it will be forwarded or filtered based on one or
more of the following:
source_ip <ipaddr> – Specifies that the access profile applies only to
packets with this source IP address.
destination_ip <ipaddr> – Specifies that the access profile applies
only to packets with this destination IP address.
class <value 0-63> – Specifies that the access profile applies only to
packets that have this value in their Type-of-Service (CLASS) field in
their IP packet header.
icmp – Specifies that the Switch examines the protocol field in each
frame header, and it should match the Internet Control Message
Protocol (ICMP) field.
type – Specifies that the Switch examines each frame’s ICMP Type
field.
code – Specifies that the Switch examines each frame’s ICMP Code
field.
tcp - Specifies that the Switch examines each frame’s protocol, and
it should match the Transport Control Protocol (TCP) field.
src_port <value 0-65535> – Specifies that the access profile applies
only to packets that have this TCP source port in their TCP header.
dst_port <value 0-65535> – Specifies that the access profile applies
only to packets that have this TCP destination port in their TCP
header.
flag {+ | –} {urg | ack | psh | rst | syn | fin }} – Specifies the
appropriate flag parameter. All incoming packets have TCP flag bits
associated with them, which are parts of a packet that determine
what to do with the packet. The user may deny packets by denying
certain flag bits within the packets.
To specify flag bits that should be “1”, type + and the flag bit name,
to specify bits that should be “0”, type – and the flag bit name.
udp – Specifies that the Switch examines the protocol field in each
packet, and it should match User Datagram Protocol (UDP) field.
src_port <value 0-65535> – Specifies that the access profile applies
only to packets that have this UDP source port in their header.
dst_port <value 0-65535> – Specifies that the access profile applies
only to packets that have this UDP destination port in their header.
protocol_id <value 0-255> – Specifies that the Switch examines the
Protocol field in each packet, and if this field contains the value
entered here, it applies the appropriate rules.
user_define <hex 0x0-0xfffffff> – Specifies a hexadecimal value to
identify the protocol to be discovered in the packet header.
ports [<portlist> | <ch1-32>] | – The access profile for IPv6 may be
defined for each port on the Switch.
permit – Specifies that packets that match the access profile are
permitted to be forwarded by the Switch. Special actions may be