beautypg.com

Intel IXM5414E User Manual

Page 231

background image

Intel® Blade Server Ethernet Switch Module IXM5414E

221

config acl rule match every

Use this command to specify a match condition in which all packets will be considered to match the
ACL rule referenced by the and parameter. If the parameter is set to
, all packets will be either permitted or denied based on the action setting for the rule and no
other match conditions may be specified. Specifying allows other match conditions to be
specified.

Format

config acl rule match every

config acl rule match protocol keyword

Use this command to specify the IP protocol of a packet as a match condition for the ACL rule
referenced by the and parameters. The parameter identifies the
protocol using a single keyword notation and has the possible values of ICMP, IGMP, IP, TCP and
UDP. A protocol keyword of ip is interpreted to match all protocol number values.

Either this command or the config acl match protocol number command can be used to specify an
IP protocol value as a match criterion.

Format

config acl rule match protocol keyword

config acl rule match protocol number

Use this command to specify a protocol number as a match condition for the ACL rule referenced by
the and parameters. The parameter identifies the protocol by
number. The protocol number is a standard value assigned by IANA and is an integer from 0 to 255.

Either this command or the config acl match protocol keyword command can be used to specify an
IP protocol value as a match criterion.

Format

config acl rule match protocol number

config acl rule match srcip

Use this command to specify a packet’s source IP address and Mask as a match condition for the
ACL rule referenced by the and parameters. The and
parameters are 4-digit dotted-decimal numbers which represent the source IP address and IP mask,
respectively.

Format

config acl rule match srcip

config acl rule match srcl4port keyword

Use this command to specify a source layer 4 port match condition for the ACL rule referenced by
the and parameters. The uses a single keyword notation and has the
possible values of domain, echo, ftp, ftpdata, http, smtp, snmp, Telnet, tftp and www. Each of these
values translates into its equivalent port number, which is used as both the start and end of the port
range.

This command and the config acl match srcl4port number command are two methods of
specifying the source layer 4 port range as a match condition. Either command can be used to
configure or modify the source layer 4 port range.

Format

config acl rule match srcl4port keyword

See also other documents in the category Intel Computer Accessories: