Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual
Page 906
894
Brocade Mobility RFS Controller CLI Reference Guide
53-1003098-01
12
deny icmp [
host
[
host
<1-5000>)
{(rule-description
deny ip [
host
[
host
rule-description
deny proto [
[
host
[
host
{(rule-description
deny [tcp|udp] [
host
[
eq
[eq
[<1-65535>|
3|
sip|smtp|ssh|telnet|tftp|www]|range
(log,rule-precedence <1-5000>) {(rule-description
Parameters
deny
[
from-vlan
rule-precedence <1-5000>) {(rule-description
Applies this deny rule to packets based on service protocols and ports specified in the network-service alias
•
configured).
A network-service alias defines service protocols and ports to match. When used with an ACL, the
network-service alias defines the service-specific components of the ACL deny rule.
For more information on configuring network-service alias, see
.
Specifies the source IP address and mask (A.B.C.D/M) to match. Packets, matching the service protocols and
ports specified in the network-service alias, received from the specified network are dropped.
Applies a network-group alias to identify the source IP addresses. Packets, matching the service protocols
and ports specified in the network-service alias, received from the addresses identified by the network-group
alias are dropped.
•
configured).
A network-group alias defines a single or a range of addresses of devices, hosts, and networks. When used
with an ACL, the network-group alias defines the network-specific component of the ACL rule (permit/deny).