Filter
Top Products
Configuration Commands
173
ACL TCP/UDP Filter configuration
These commands allow you to define TCP/UDP matching criteria for an ACL. The following table
describes the TCP/UDP Filter Configuration commands.
Table 158 TCP/UDP Filter Configuration commands
Command Description
access-control list <1-384> tcp-
udp source-port <1-65535> {<port
mask>}
Defines a source port for the ACL. If defined, traffic with the
specified TCP or UDP source port will match this ACL. Specify the
port number. Some of the well-known ports include:
20—ftp-data
21—ftp
22—ssh
23—telnet
25—smtp
37—time
42—name
43—whois
53—domain
69—tftp
70—gopher
79—finger
80—http
Command mode: Global configuration
access-control list <1-384> tcp-
udp destination-port <1-65535>
{<port mask>}
Defines a destination port for the ACL. If defined, traffic with the
specified TCP or UDP destination port will match this ACL. Specify
the port number, just as with source-port above.
Command mode: Global configuration
access-control list <1-384> tcp-
udp flags <value (0x0-0x3f)>
Defines a TCP/UDP flag for the ACL.
Command mode: Global configuration
default access-control list <1
384> tcp-udp
Resets the TCP/UDP parameters for the ACL to their default values.
Command mode: Global configuration
show access-control list [<1-384>]
tcp-udp
Displays the current TCP/UDP Filtering parameters.
Command mode: All except User EXEC