Reference Guide (Supporting software release 4.1.0.0-040GR and later) User guide

ManualsBrandsBrocade ManualsComputer AccessoriesMobility RFS7000-GR Controller CLI

371

372

373

374

375

376

377

378

379

380

Table Of Contents

Table of Contents
About This Document
- In this chapter
- Who Should Use this Guide
- How to Use this Guide
- Conventions Used in this Guide
  - Annotated Symbols
  - Notational Conventions
- Web support sites
Introduction
- In this chapter
- Common Criteria Operational Requirements
  - Configuration of MAC ACL For Common Criteria Operation
  - Configuration of IP ACL For Common Criteria Operation
- CLI Overview
- Getting Context Sensitive Help
- Using the no and default forms of Commands
- Setting the Administrator Inactivity Timeout
- Basic Conventions
- Using CLI Editing Features and Shortcuts
Common Commands
- In this chapter
- Common commands
- show
User Exec Commands
- In this chapter
- User Exec Commands
Privileged Exec Commands
- In this chapter
- Priv Exec Command
Global Configuration Commands
- In this chapter
- Global Configuration Commands
Crypto-isakmp Instance
- In this chapter
- Crypto ISAKMP Config Commands
Crypto-group Instance
- In this chapter
- Crypto Group Config Commands
Crypto-peer Instance
- In this chapter
- Crypto Peer Config Commands
Crypto-ipsec Instance
- In this chapter
- Crypto IPSec Config Commands
Crypto-map Instance
- In this chapter
- Crypto Map Config Commands
Crypto-trustpoint Instance
- In this chapter
- Trustpoint Config commands
Interface Instance
- In this chapter
- Interface Config commands
Spanning tree-mst Instance
- In this chapter
- mst Config commands
- Configuring Interface using MSTP
Extended ACL Instance
- In this chapter
- Extended ACL Config Commands
Standard ACL Instance
- In this chapter
- Standard ACL Config Commands
Extended MAC ACL Instance
- In this chapter
- MAC Extended ACL Config Commands
DHCP Server Instance
- In this chapter
- DHCP Config Commands
- DHCP configuration is conducted by creating pools and mapping them to L3 interfaces (SVI).
DHCP Class Instance
- In this chapter
- DHCP Server Class Config Commands
RADIUS Server Instance
- In this chapter
- RADIUS Configuration Commands
  - Example-Creating a Group
Wireless Instance
- In this chapter
- Wireless Configuration Commands
RTLS Instance
- In this chapter
- RTLS Config Commands
SOLE Instance
- In this chapter
- SOLE Config Commands

Brocade Mobility RFS7000-GR CLI Reference Guide 365

53-1001945-01

Extended ACL Config Commands

permit

Extended ACL Config Commands

Use this command to permit specific packets.

NOTE

ACLs do not allow DHCP messages to flow by default. Configure an Access Control Entry (ACE) to

allow DHCP messages to flow through.

RFS7000(config-ext-nacl)#permit ip 192.168.1.0/24 192.168.2.0/24

RFS7000(config-ext-nacl)#permit ip any host 255.255.255.255

RFS7000(config-ext-nacl)#

Syntax

permit {ip} {source/source-mask A.B.C.D/MA.B.C.D/M| host sourcehost | any}

{destination/destination-mask | host destinationhost | any} [log]

[rule-precedence access-list-entry precedence]

permit {icmp} {source/source-mask A.B.C.D/M| host sourcehost | any} {destination/

destination-maskA.B.C.D/M | host destinationhost | any} [icmp-type | [icmp-type

icmp-code]] [log] [rule-precedence access-list-entry precedence]

permit{tcp|udp} {source/source-mask A.B.C.D/M| host sourcehost | any} [operator

source-port] {destination/destination-mask | host destinationhost | any}

[operator destination-port] [log] [rule-precedence access-list-entry precedence]