Specifications

RoamAbout Mobility System Software Command Line Reference 14-13

Examples

ThefollowingcommandaddsanACEtosecurityacl_123thatpermitspacketsfromIPaddress

192.168.1.11/24andcountsthehits:

RBT-8100# set security acl ip acl_123 permit 192.168.1.11 0.0.0.255 hits

ThefollowingcommandaddsanACEtoacl_123thatdeniespacketsfromIPaddress192.168.2.11:

RBT-8100# set security acl ip acl_123 deny 192.168.2.11 0.0.0.0

Thefollowingcommandcreatesacl_125bydefininganACEthatdeniesTCPpacketsfromsource

IPaddress192.168.0.1todestinationIPaddress192.168.0.2forestablishedsessionsonly,and

countsthehits:

RBT-8100# set security acl ip acl_125 deny tcp 192.168.0.1 0.0.0.0 192.168.0.2

0.0.0.0 established hits

ThefollowingcommandaddsanACEtoacl_125thatdeniesTCPpacketsfromsourceIPaddress

192.168.1.1todestinationIPaddress192.168.1.2,ondestinationport80only,andcountsthehits:

RBT-8100# set security acl ip acl_125 deny tcp 192.168.1.1 0.0.0.0 192.168.1.2

0.0.0.0 eq 80 hits

Finally,thefollowingcommandcommitsthesecurityACLsintheeditbuffertotheconfiguration:

RBT-8100# commit security acl all

configuration accepted

Related Commands

• clearsecurityaclonpage 14‐2

• commitsecurityaclonpage 14‐6

• showsecurityaclonpage 14‐17