Brocade-communications-systems RFS6000 Bedienungsanleitung Seite 456
- Seite / 839
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
454 Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide
53-1001931-01
Extended ACL config commands
14
RFController(config-ext-nacl)#deny ip 192.168.2.0/24 192.168.1.0/24
RFController(config-ext-nacl)#permit ip any any
RFController(config-ext-nacl)#
Example - denying TCP based traffic
The following example denies TCP traffic with a source port range between 20 - 23 (from the
source subnet to destination subnet):
RFController(config-ext-nacl)#deny tcp range 20 23 192.168.1.0/24
192.168.2.0/24
RFController(config-ext-nacl)#permit ip any any
RFController(config-ext-nacl)#
Example - denying UDP based traffic
The following example denies UDP traffic with a source port range between 20 - 23 (from the
source subnet to destination subnet):
RFController(config-ext-nacl)#deny udp range 20 23 192.168.1.0/24
192.168.2.0/24
RFController(config-ext-nacl)#permit ip any any
RFController(config-ext-nacl)#
Example - denying ICMP based traffic
The following example denies ICMP traffic from any source to any destination. The keyword any is
used to match:
any source or destination IP address.
RFController(config-ext-nacl)#deny icmp any any
RFController(config-ext-nacl)#permit ip any any
RFController(config-ext-naclend
Example - denying protocol based ACL
With the inclusion of protocol based acls, it is possible to permit or deny all the protocols that exist.
RFController(config-ext-nacl)#deny proto ospf any any rule-precedence 10
RFController(config-ext-nacl)#deny proto eigrp any any rule-precedence 20
RFController(config-ext-nacl)#permit ip any any rule-precedence 30
- Brocade Mobility RFS4000 1
- RFS6000 and RFS7000 1
- Document History 2
- About This Document 13 3
- 1 Introduction 21 3
- 2 Common Commands 31 3
- 3 User Exec Commands 155 4
- 6 Crypto-isakmp Instance 327 6
- 14 Extended ACL Instance 449 9
- 15 Standard ACL Instance 471 9
- 17 DHCP Server Instance 507 10
- 18 DHCP Class Instance 543 10
- 19 Radius Server Instance 555 10
- 23 RFID Instance 739 13
- 24 SOLE Instance 753 13
- 25 Smart RF Instance 767 13
- About This Document 15
- How to use this guide 16
- Document conventions 17
- Command syntax conventions 19
- Notice to the reader 20
- Web support sites 21
- 1Introduction 23
- CLI Modes 24
- Command Description 27
- Basic conventions 28
- Deleting entries 30
- Command output pagination 31
- Controlling Capitalization 31
- 2Common Commands 33
- Common commands 38
- – high temperature limit 41
- – low temperature limit 41
- – URL to which to copy 41
- Display 62
- Usage Guidelines 67
- 000 msec, dispersion 0.00 86
- 53-1001931-01 100
- • Mobility RFS7000 Controller 106
- • Mobility RFS4000 Controller 106
- • Mobility RFS6000 Controller 107
- Common Commands 126
- User exec commands 158
- Parameters 160
- 4Privileged Exec Commands 171
- TABLE 4 Priv Exec Commands 172
- Priv Exec command 175
- If Untar fails..? 175
- Global Configuration Commands 219
- Global Configuration commands 220
- Global Config Commands 220
- {authport <1024-65535>} 222
- (config)# 239
- (config)# crypt-map instance 239
- WID, using (config)# mode 260
- • 0 – Disables aging 268
- 6Crypto-isakmp Instance 329
- Crypto ISAKMP config commands 342
- 7Crypto-group Instance 343
- Crypto Group config commands 351
- 8Crypto-peer Instance 353
- Crypto Peer config commands 362
- 9Crypto-ipsec Instance 363
- Crypto IPSec config commands 370
- 10Crypto-map Instance 373
- Crypto Map config commands 379
- [ipaddress 383
- <host name>] 383
- 11Crypto-trustpoint Instance 389
- 12Interface Instance 405
- Interface config commands 406
- Interface Config Commands 406
- How src-dst-mac mode works 421
- How src-dst-ip mode works 421
- 13Spanning tree-mst Instance 437
- Extended ACL config commands 454
- Permitting IP based traffic 467
- Permitting ICMP based traffic 468
- Configuring IP Extended ACL 471
- 15Standard ACL Instance 473
- {log} {rule-precedence 475
- <1-5000>} 475
- Standard ACL config commands 476
- 16Extended MAC ACL Instance 489
- Configuring MAC Extended ACL 507
- 17DHCP Server Instance 509
- TABLE 17 DHCP Config Commands 510
- Creating a DHCP User Class 513
- DHCP Config commands 537
- Creating network pool 540
- Creating a Host Pool 541
- network 192.168.0.0/24 542
- <type> 543
- Creating a DHCP Option 544
- 18DHCP Class Instance 545
- Creating a DHCP user class 552
- 19Radius Server Instance 557
- Radius configuration commands 558
- RADIUS Server Command Summary 558
- RFController# 566
- RFController(config)# 566
- (config-radsrv) mode 570
- Example–creating a group 573
- 20Wireless Instance 591
- Command Description Ref 592
- (config-wireless) instance 593
- Configuring a client 614
- • Enable NAC for a WLAN 615
- • Undo a configuration 615
- Converting an AP to sensor 619
- {<MAC>} 649
- {<ap-index>} 664
- {logout-on-browser-close} 684
- {auth-port <port>} 684
- {auth-port <port>} 684
- {acct-port 685
- <port>} 685
- {port <1-65535>} 685
- {limit <0-8192>} 685
- .d>&port=<x> 690
- 21RTLS Instance 707
- RTLS config commands 721
- 22ESPI Instance 731
- ESPI config commands 740
- 23RFID Instance 741
- RFID config commands 751
- 24SOLE Instance 755
- SOLE config commands 765
- 25Smart RF Instance 769
- Role config commands 819
- 27AAP IP Filtering 821
- AAP IP Filter config commands 825
Verwandte Produkte und Handbücher für Hardware Brocade-communications-systems RFS6000
(16 Seiten)© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.105 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern