User`s guide
PassFinder AP2520 VoIP Router/Gateway Operation Manual Version 1.10 / Mar. 2002
AddPac Technology Co., Ltd. -
108 -
z access-group <access-list-number> [in/out]
As an interface command, applies the access-list to the incoming packet
or the outgoing packet of the corresponding interface.
Extended IP Access-List: To check access conditions, the extend IP
access-list uses source IP address, destination IP address, protocol ID,
application port number and establishment status.
z access-list <access-list-number> {deny/permit}<protocol> <source>
<source wildcard> <destination> <destination-wildcard> [operator]
[port-number][established]
1. Creates Access-list.
2. Option explanation
1) access-list-number : Extended Access-List (Number in range of
30~59)
2) protocol : protocol ID Number 또는 protocol name (Ex: TCP, ICMP,
UDP IP and so on)
3) source : Source Network Address,
4) Source-wildcard : Source Address의 Inverse Mask
5) Destination : Destination Network Address
6) destination-wildcard : Destination Address의 Inverse Mask
7) operator : operator for Port #
9 eq : equal
9 gt : greater then
9 lt : less then
9 neq : not equal
8) port-number: As application port number, well known port # is as
follows:
9 chargen : Character generator (19)
9 daytime : Daytime (13)
9 discard : Discard (9)
9
domain : Domain Name Service (53)
9 echo : Echo (7)
9 finger : Finger (79)
9 ftp : File Transfer Protocol (21)