Product specifications
Chapter 5: System Security Efficient Networks
®
Router family
Technical Reference Guide
Page 5-40 Efficient Networks
®
Port Information - When port information is entered, the source port value is
preceded with
-sp and the destination port with -dp. The parameters are:
-sp <ICMP type> | <first source port>[:<last source
port>]
Modifies the source port, specified port range, or ICMP type.
-dp <ICMP code> | <first dest port>[:<last dest port>]
Modifies the destination port, specified port range, or ICMP type.
Application - Modifies the application type packets must match. The valid
parameters are:
-a imap | telnet | bootp | nntp | rpc | tftp | smtp |
dns | ftp | rexec | rsh | rlogin | syslog | winframe |
rdp | http | https | ntp | smb | ras | realaudio |
netmeeting | aolim| quicktime | cuseeme | netshow |
pptp | nfs | nis | traceroute | sqlnet | ipsec
-> firewall modify allow -a ftp -sa 192.168.1.34 -d
out
Source address - Modifies the specified source address or range of
addresses.
-sa <first source ip addr>[:<last source ip addr>]
Source mask - Modifies the source IP mask. If no source mask is specified,
the mask used is 255.255.255.255.
-sm <source ip mask>
Destination address - Modifies the specified destination address or range
of addresses.
-da <first dest ip addr>[:<last dest ip addr>]
Destination mask - Modifies the destination IP mask. If no destination mask
is specified, the mask used is 255.255.255.255.
-dm <dest ip mask>