22-10
Cisco Systems Intelligent Gigabit Ethernet Switch Modules for the IBM BladeCenter, Software Configuration Guide
24R9746
Chapter 22 Configuring Network Security with ACLs
Configuring ACLs
For more details about the specific keywords relative to each protocol, see the Cisco IP and IP Routing
Command Reference, Cisco IOS Release 12.1.
Note The switch does not support dynamic or reflexive access lists. It also does not support filtering based on
the minimize-monetary-cost type of service (ToS) bit.
When creating ACEs in numbered extended access lists, remember that after you create the list, any
additions are placed at the end of the list. You cannot reorder the list or selectively add or remove ACEs
from a numbered list.
Note For information about creating ACLs to apply to management interfaces, see the “Configuring IP
Services” section of Cisco IOS IP and IP Routing Configuration Guide, Release 12.1 and the Cisco IOS
IP and IP Routing Command Reference, Cisco IOS Release 12.1. You can apply ACLs only to a
management interface or the CPU, such as SNMP, Telnet, or web traffic.
Layer 4 Parameters
Source port operator X X
Source port X X
Destination port operator X X
Destination port X X
TCP flag – –
1. X in a protocol column means support for the filtering parameter.
2. No support for type of service (ToS) minimize monetary cost bit.
Table 22-3 Filtering Parameter ACEs Supported by Different IP Protocols (continued)
Filtering Parameter
1
TCP UDP