Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

301

302

303

304

305

306

307

308

309

310

• Use the no permit tcp {source address mask | any | host ipv6-address}

{destination address | any | host ipv6-address} command.

Parameters

source address

mask

Enter a network mask in /prex format (/x).

any Enter the keyword any to specify that all routes are subject to the lter.

host ipv6-address Enter the keyword host then the IP address to specify a host IP address.

destination address Enter the IPv6 address of the network or host to which the packets are sent.

bit Enter a ag or combination of bits:

• ack: acknowledgement eld

• fin: nish (no more data from the user)

• psh: push function

• rst: reset the connection

• syn: synchronize sequence numbers

• urg: urgent eld

operator (OPTIONAL) Enter one of the following logical operand:

• eq = equal to

• neq = not equal to

• gt = greater than

• lt = less than

• range = inclusive range of ports (you must specify two ports for the port parameter)

port port Enter the application layer port number. Enter two port numbers if you are using the

range logical operand. The range is from 0 to 65535.

The following list includes some common TCP port numbers:

• 23 = Telnet

• 20 and 21 = FTP

• 25 = SMTP

• 169 = SNMP

count (OPTIONAL) Enter the keyword count to count packets the lter processes.

byte (OPTIONAL) Enter the keyword byte to count bytes the lter processes.

log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.

threshold-in msgs

count

(OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate

the maximum number of ACL logs that can be generated, exceeding which the generation

of ACL logs is terminated. with the seq, permit, or deny commands. The threshold

range is from 1 to 100.

interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at

which ACL logs must be generated. The interval range is from 1 to 10 minutes.

monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the trac that you

want to monitor and the ACL in which you are creating the rule is applied to the

monitored interface.

302 Access Control Lists (ACL)