Foundry NetIron M2404C and M2404F Metro Access Switches
Configuring ACLs (Rev. 03)
Overview
© 2008 Foundry Networks, Inc
Page 22 of 50
Valid Literal Value
Description
Value
discard
Discard 9
dnsix
DNSIX security protocol auditing
195
domain
Domain Name Service
53
echo
Echo 7
isakmp
Internet Security Association and Key Management
Protocol
500
mobile-ip
Mobile IP registration
434
nameserver
IEN116 name service (obsolete)
42
netbios-dgm
NetBios datagram service
138
netbios-ns
NetBios name service
137
netbios-ss
NetBios session service
139
ntp
Network Time Protocol
123
pim-auto-rp
PIM Auto-RP
496
rip
Routing Information Protocol (router, in.routed)
520
snmp
Simple Network Management Protocol
161
snmptrap
SNMP Traps
162
sunrpc
Sun Remote Procedure Call
111
syslog
Syslog 514
tacacs-ds
TAC Access Control System
49
talk
Talk 517
tftp
Trivial File Transfer Protocol
69
time
Time 37
who
Who service (rwho)
513
xdmcp
X Display Manager Control Protocol
177
Example 1
In the following example (
Figure 7
) we have a server with the IP address 202.20.0.1 and its clients
PC1 and PC2 in subnet 192.98.0.0. The clients should be able to communicate with the server only
by the TCP protocols TELNET and FTP. All other traffic is denied by default.