Owner's Manual
Chapter 13. ACLs | 333
NETGEAR 8800 User Manual
if {
destination-address 192.168.0.0/16 ;
source-port 1000 ;
} then {
deny ;
}
}
Entry ex_A consists of the following conditions (using the abbreviations from Table 34), SIP,
L4DP, and IP-Proto. Entry ex_B is DIP, L4SP. Since they are applied to ports, the selector for
Field 1 is Port-list (the first item). The selector for Field 2 would be the first item, and Field 3
could be any item.
Our other example entries are also compatible with the entries ex_A and ex_B:
entry one {
if {
source-address 10.66.10.0/24 ;
destination-port 23 ;
protocol tcp ;
} then {
deny ;
}
}
entry two {
if {
destination-address 192.168.0.0/16 ;
source-port 1000 ;
} then {
deny ;
}
}
entry three {
if {
source-address 10.5.2.246/32 ;
destination-address 10.0.1.16/32 ;
protocol upd ;
source-port 100 ;
destination-port 200 ;
} then {
deny ;
}