2 non-ipv4 acl commands – PLANET FGSW-2620VM User Manual
Page 184
User’s Manual of FGSW-Series
184
<0-FF> specifies the protocol value.
<0-FF> specifies the protocol mask.
<0-FFFF> specifies the source port value.
<0-FFFF> specifies the source port mask.
<0-FFFF> specifies the destination port value.
<0-FFFF> specifies the destination mask.
e.g. acl add 1 qosvoip 1 7 1 1 0 0 0 0 0 0
6.16.2 Non-IPv4 ACL commands
no acl
<1-220> and show acl [<1-220>] commands are same as IPv4 ACL commands.
acl (add|edit) <1-220> (permit|deny) <0-4094> nonipv4 <0-65535>
Description:
Add or edit ACL group for non-IPv4.
Syntax:
acl (add|edit) <1-220> (permit|deny) <0-4094> nonipv4 <0-65535>
Parameters:
(add|edit) specifies the operation.
<1-220> specifies the group id.
(permit|deny) specifies the action. permit: permit packet cross switch; deny: drop packet.
<0-4094> specifies the VLAN id. 0 means don't care.
<0-65535> specifies the Ether Type. 0 means don't care.
e.g. acl add 1 deny 0 nonipv4 2054. This ACL rule will drop all packets for ether type is 0x0806 and non-IPv4.