beautypg.com

Match tcp-flags – Allied Telesis AT-DC2552XS User Manual

Page 499

background image

AT-DC2552SX Switch Command Line Interface User’s Guide

Section V: Security and Traffic Control

499

MATCH TCP-FLAGS

Syntax

match tcp-flags acl|syn|fin|rst|urg

Parameters

acl

Specifies the ACK (acknowledge) TCP flag.

syn

Specifies the SYN (synchronize) TCP flag.

fin

Specifies the FIN (finish) TCP flag.

rst

Specifies the RST (reset) TCP flag.

urg

Specifies the URG (urgent) TCP flag.

Mode

Class Map Configuration mode

Description

Use this command to add one or multiple TCP flags as matching criteria to
a class map. A TCP flag is a control bit set in a TCP header. If a packet
contains a TCP header, the switch matches the criteria to the FLAGS field
in the TCP header. When a TCP flag has already been set in a class map,
this command adds a new flag as matching criterion.

When multiple TCP flags are specified as matching criteria to a class map,
the switch filters incoming traffic with an AND operand.

To remove a TCP flag as a matching criterion from a class map, use the
NO MATCH TCP-FLAGS command.

Confirmation Command

“SHOW CLASS-MAP” on page 513

See also other documents in the category Allied Telesis Computer hardware: