Table 144. protocol numbers 6 – Allied Telesis AT-9000 Series User Manual

Chapter 74: ACL Commands

1216

dst_ipaddress

Specifies the destination IP address of the ingress packets the
access list should filter. Choose one of the following:

any: Matches any IP address.

ipaddress/mask: Matches packets that have a destination IP
address of a specific subnet or end node.

host ipaddress: Matches packets with a destination IP address
of a specific end node. The HOST keyword indicates that the
address is of a specific end node and that no mask is required.

vlan

Indicates a VLAN identifier. Specify a VLAN if you want the ACL to
filter tagged packets. Omit a VLAN if you want the ACL to filter
untagged packets. Specify a value between 1 and 4094. You can
enter only one VID.

Mode

Global Configuration mode

Confirmation Commands

“SHOW ACCESS-LIST” on page 1232 and “SHOW INTERFACE
ACCESS-GROUP” on page 1234

Description

Use this command to create ACLs that identify traffic flows based on
protocol numbers and source and destination IP addresses. The protocol
numbers are listed in Table 144.

Table 144. Protocol Numbers

Number

Description

1

Internet Control Message (RFC792)

2

Internet Group Management (RFC1112)

3

Gateway-to-Gateway (RFC823)

4

IP in IP (RFC2003)

5

Stream (RFC1190 and RFC1819))

6

TCP (Transmission Control Protocol)
(RFC793)

8

EGP (Exterior Gateway Protocol)
(RFC888)