Technical data

RackSwitch G8124 Command Reference

170

 Chapter 4: Configuration Commands BMD00076, January 2009

IP Extended ACL Configuration

The information in this section explains how to use the IP Extended ACL Configuration.

TCP ACL Configuration

The TCP ACL specifies which packets to permit or deny, based on the matching criteria, as

described below:

 tcp = Transport Control Protocol

 Source IP address

 Port number or range, as follows:

eq = TCP port number is equal to the specified value

gt = TCP port number is greater than to the specified value

lt = TCP port number is less than to the specified value

range = TCP port number is within the specified range

 Destination IP address

 ack = TCP ACK bit (establish = 1, non-establish = 2, any = 3)

 fin = TCP FIN bit

 psh = TCP PSH bit

 rst = TCP RST bit (set = 1, not set = 2, any = 3)

 syn = TCP SYN bit

 tos = Type of Service

 dscp = Differentiated Services Code Point (DSCP) value

 user-priority = User priority value