Technical information
ADC Telecommunications, Inc.
48 CHAPTER 2: CUDA 12000 BASE SYSTEM COMMANDS
Use the following syntax to create a UDP access list:
access-list <access list number> {permit | deny} <rule number>
udp {<source IP address> <source IP mask> | host <ip address> | any}
{<dest IP address><dest IP mask> | host <dest ip address> | any}
{<ip address> <IP mask> | host <ip address> | <operator> <port>
[<port>] | any}]
{<IP address> <mask>| any | host <ip address> [<operator><port>
[<port>]]
[established] [tos <tos> <tos mask>] [change-tos <tos>]
Arguments
<access list number> Index number that identifies this list. Valid range: 1–65535.
{permit | deny} Specifies one of the following values:
■ permit – Permits access if packets match access list criteria.
■ deny – Denies access if packets match access list criteria.
<rule number> Number identifying the precedence of this access list. Smaller
rule numbers result in greater precedence. This means that an
access list with a lesser rule number is applied against the
interface first.
<source ip address> IP address seen in the source IP address field of the protocol
header. A value of any acts as a wildcard.
<source ip mask> Source IP address network mask, if you specified a specified
address.
host Host address if filtering on a specific IP host.
<dest ip address> IP address seen in the destination IP address field of the
protocol header. A value of any acts as a wildcard.
<dest ip address> Destination IP address network mask, if you specified a
specific address.
<operator> Operand used to compare source and destination ports. You
can use the following operands:
■ lt (less than)
■ gt (greater than)
■ eq (equal)
■ range (inclusive range)
<port> TCP or UDP port number. Valid range: 0–65535.