Brocade TurboIron 24X Series Configuration Guide User Manual
Page 941
Brocade TurboIron 24X Series Configuration Guide
907
53-1003053-01
Configuring extended numbered ACLs
The
•
This parameter applies only if you specified icmp as the
•
If you use this parameter, the ACL entry is sent to the CPU for processing.
•
If you do not specify a message type, the ACL applies to all types of ICMP messages.
The
The
version the device is running:
•
any-icmp-type
•
echo
•
echo-reply
•
information-request
•
log
•
mask-reply
•
mask-request
•
parameter-problem
•
redirect
•
source-quench
•
time-exceeded
•
timestamp-reply
•
timestamp-request
•
traffic policy
•
unreachable
•
num
The
UDP port number. This parameter applies only when you specify tcp or udp as the IP protocol. For
example, if you are configuring an entry for HTTP, specify tcp eq http. You can enter one of the
following operators:
•
eq – The policy applies to the TCP or UDP port name or number you enter after eq.
•
established – This operator applies only to TCP packets. If you use this operator, the policy
applies to TCP packets that have the ACK (Acknowledgment) or RST (Reset) bits set on (set to
“1”) in the Control Bits field of the TCP packet header. Thus, the policy applies only to
established TCP sessions, not to new sessions. Refer to Section 3.1, “Header Format”, in RFC
793 for information about this field.
NOTE
This operator applies only to destination TCP ports, not source TCP ports.
•
gt – The policy applies to TCP or UDP port numbers greater than the port number or the
numeric equivalent of the port name you enter after gt.
•
lt – The policy applies to TCP or UDP port numbers that are less than the port number or the
numeric equivalent of the port name you enter after lt.
•
neq – The policy applies to all TCP or UDP port numbers except the port number or port name
you enter after neq.