CLI Reference Guide
314 CHAPTER 7: CONFIGURING AUTHENTICATION, AUTHORIZATION, AND ACCOUNTING PARAMETERS
Creating a Layer 4 Protocol ACE
To create a Layer 4 Protocol ACE:
1 In the ACL Setup page of the Create ACL wizard, click New. A list of
ACEs appears.
2 Select New L4 Protocol ACE. The Create L4 Protocol ACE dialog box
appears.
3 In the Action list, select Permit to allow access if the conditions in the
ACE are matched, or Deny to refuse access if the conditions are
matched.
4 If you select Permit, in the CoS box, specify a class-of-service level for
packets. For information, see step 4 in “Creating an IP ACE” on
page 309.
5 To enable counting of packets filtered by an ACL, select Enable Hit
Count.
6 Define the IP attributes (source and destination IP addresses, the TOS, and
the precedence). The steps are the same as the steps when configuring
an IP ACE. See step 6 on page 309 through step 9 on page 310.
7 In the Protocol ID box, specify the IP protocol number. Table 26 lists
commonly used IP protocol numbers.
Table 26 Commonly Used IP Protocol Numbers
IP Protocol Number Protocol
1 Internet Control Message Protocol (ICMP)
2 Internet Group Management Protocol (IGMP)
6 Transmission Control Protocol (TCP)
9 Any private interior gateway (used by Cisco for Internet
Gateway Routing Protocol)
17 User Datagram Protocol (UDP)
41 IPv6
46 Reservation Protocol (RSVP)
47 Generic Routing Encapsulation (GRE)
50 Encapsulation Security Payload for IPSec (IPSec-ESP)
51 Authentication Header for IPSec (IPSec-AH)
55 IP Mobility (Mobile IP)
88 Enhanced Interior Gateway Routing Protocol (EIGRP)