beautypg.com

Security network acl delete – Interlogix NS3550-8T-2S User Manual User Manual

Page 371

background image

User’s Manual of NS3550-8T-2S

371

If the ACE ID parameter is specified and an entry with this ACE ID already exists, the ACE will be modified.
Otherwise, a new ACE will be added. If the ACE ID is not specified, the next available ACE ID will be used.

If the next ACE ID parameter is specified, the ACE will be placed before this ACE in the list. If the next ACE
ID is not specified, the ACE will be placed last in the list.

If the Switch keyword is used, the rule applies to all ports.
If the Port keyword is used, the rule applies to the specified port only. If the Policy keyword is used, the rule applies to all
ports configured with the specified policy. The default is that the rule applies to all ports.

Syntax:

Security Network ACL Add [] [] [switch | (port ) | (policy )] [] []

[] [] [(etype [] [] []) | (arp [] [] [] []
[]) | (ip [] [] [] []) | (icmp [] [] [] []
[]) | (udp [] [] [] [] []) | (tcp [] [] [] [] []
[])] [permit|deny] [] [] [] [] []


Parameters:

: ACE ID (1-256), default: Next available ID

: Next ACE ID (1-256), default: Add ACE last

switch

: Switch ACE keyword

port

: Port ACE keyword

: Port list or 'all', default: All ports

policy

: Policy ACE keyword

: Policy number (1-8)

: Tagged of frames: any|enable|disable

: VLAN ID (1-4095) or 'any'

: VLAN tag priority (0-7) or 'any'

: DMAC type: any|unicast|multicast|broadcast

etype

: Ethernet Type keyword

: Ethernet Type: 0x600 - 0xFFFF or 'any' but excluding,

0x800(IPv4) 0x806(ARP) and 0x86DD(IPv6)

: Source MAC address (xx-xx-xx-xx-xx-xx) or 'any'

: Destination MAC address (xx-xx-xx-xx-xx-xx) or 'any'

arp

: ARP keyword

: Source IP address (a.b.c.d/n) or 'any'

: Destination IP address (a.b.c.d/n) or 'any'

: ARP operation code: any|arp|rarp|other

: ARP flags: request|smac|tmac|len|ip|ether [0|1|any]

ip

: IP keyword

: IP protocol number (0-255) or 'any'

: IP flags: ttl|options|fragment [0|1|any]

icmp

: ICMP keyword

: ICMP type number (0-255) or 'any'

: ICMP code number (0-255) or 'any'

udp

: UDP keyword

: Source UDP/TCP port range (0-65535) or 'any'

: Destination UDP/TCP port range (0-65535) or 'any'

tcp

: TCP keyword

: TCP flags: fin|syn|rst|psh|ack|urg [0|1|any]

permit

: Permit forwarding (default)

deny

: Deny forwarding

: Rate limiter number (1-15) or 'disable'

: Port list for copy of frames or 'disable'

: Mirror of frames: enable|disable

: System logging of frames: log|log_disable

: Shut down ingress port: shut|shut_disable


Security Network ACL Delete

Description:

Delete ACE.


Syntax:

Security Network ACL Delete


Parameters:

: ACE ID (1-256)

See also other documents in the category Interlogix Accessories communication: