beautypg.com

Enterasys Networks 1G58x-09 User Manual

Page 777

background image

Security Configuration Command Set

Configuring Access Lists

Matrix E1 Series (1G58x-09 and 1H582-xx) Configuration Guide

14-95

Command Syntax of the “no” Form

The “no” form of this command removes the defined access list or entry:

no access-list access-list-number [entry]

Command Type

Router command.

Command Mode

Global configuration: Matrix>Router(config)#

Command Defaults

If insert, replace, or move are not specified, the new entry will be appended
to the access list.

If source2 is not specified with move, only one entry will be moved.

If icmp-type and icmp-code are not specified, ICMP parameters will be applied
to all ICMP message types.

If operator and port are not specified, access parameters will be applied to all
TCP or UDP ports.

If established is not specified, TCP restriction will be applied to all
connections.

operator port

(Optional) Applies access rules to TCP or UDP source or
destination port numbers. Possible operands include:

lt port - Match only packets with a lower port number.

gt port - Match only packets with a greater port number.

eq port - Match only packets on a given port number.

neq port - Match only packets not on a given port
number.

range min-sport max-sport - Match only packets in the
range of source ports

range min-dport max-dport - Match only packets in the
range of destination ports.

established

(Optional) Applies TCP restrictions to established
connections only.

This manual is related to the following products:
See also other documents in the category Enterasys Networks Hardware: