CLI Reference Guide
ACL Configuration Commands
source
|
any
} {
host
source-mac-address
|
any
} {
destination
destination-wildcard
|
host
destination
|
any
} {
host
destination-mac-address
|
any
} [
time-range
time-range-name
]
When you select the protocol field:
[
sn
]
permit protocol
[
VID
[
out][
inner
in
]] {
source
source-wildcard
|
host
Source
|
any
} {
host
source-mac-address
|
any
} {
destination
destination-wildcard
|
host
destination
|
any
} {
host
destination-mac-address
|
any
} [
precedence
precedence
] [
tos
tos
] [
fragment
] [
range
lower
upper
]
[
time-range
time-range-name
]
Extended expert ACLs of some important protocols:
Internet Control Message Protocol (ICMP)
[
sn
]
permit icmp
[
VID
[
out
][
inner
in
]] {
source
source-wildcard
|
host
source
|
any
} {
host
source-mac-address
|
any
} {
destination
destination-wildcard
|
host
destination
|
any
} {
host
destination-mac-address
|
any
}[
icmp-type
] [[
icmp-type
[
icmp-code
]] | [
icmp-message
]]
[
precedence
precedence
] [
tos
tos
] [
fragment
] [
time-range
time-range-name
]
Transmission Control Protocol (TCP)
[
sn
]
permit tcp
[
VID
[
ou
t][
inner
in
]]{
source
source-wildcard
|
host
Source
|
any
} {
host
source-mac-address
|
any
} [
operator
port
[
port
]] {
destination destination-wildcard
|
host
destination
|
any
} {
host
destination-mac-address
|
any
} [
operator
port
[
port
]] [
precedence
precedence
] [
tos
tos
]
[
fragment
] [
range
lower
upper
] [
time-range
time-range-name
] [
match-all
tcp-flag |
established
]
User Datagram Protocol (UDP)
[
sn
]
permit udp
[
VID
[
out
][
inner
in
]]{
source source
–wildcard
|
host
source
|
any
} {
host
source-mac-address
|
any
} [
operator
port
[
port
]] {
destination
destination-wildcard
|
host
destination
|
any
} {
host
destination-mac-address
|
any
} [
operator
port
[
port
]] [
precedence
precedence
] [
tos
tos
]
[
fragment
] [
range
lower
upper
] [
time-range
time-range-name
]
Address Resolution Protocol (ARP)
[
sn
]
permit arp
{
vid
vlan-id
}
[
host
source-mac-address
|
any
] [
host
destination
–mac-address
|
any
]
{
sender-ip sender-ip
–wildcard
|
host
sender-ip
|
any
} {
sender-mac sender-mac-wildcard
|
host
sender-mac
|
any
} {
target-ip target-ip
–wildcard
|
host
target-ip
|
any
}
Extended IPv6 ACL
[
sn
]
permit protocol
{
source-ipv6-prefix
/
prefix-length
|
any
|
host
source-ipv6-address
}
{
destination-ipv6-prefix
/
prefix-length
|
any
|
hostdestination-ipv6-address
} [
dscp
dscp
] [
flow-label
flow-label
] [
fragment
] [
range
lower
upper
] [
time-range
time-range-name
]
Extended IPv6 ACLs of some important protocols:
Internet Control Message Protocol (ICMP)
[
sn
]
permit icmp
{
source-ipv6-prefix
/
prefix-length
|
any
source-ipv6-address
|
host
}
{
destination-ipv6-prefix
/
prefix-length
|
host
destination-ipv6-address
|
any
} [
icmp-type
] [[
icmp-type
[
icmp-code
]] | [
icmp-message
]] [
dscp
dscp
] [
flow-label
flow-label
][
fragment
] [
time-range
time-range-name
]
Transmission Control Protocol (TCP)
[
sn
]
permit tcp
{
source-ipv6-prefix
/
prefix-length
|
host
source-ipv6-address
|
any
} [
operator
port
[
port
] ] {
destination-ipv6-prefix
/
prefix-length
|
host
destination-ipv6-address
|
any
} [
operator
port
[
port
]] [
dscp
dscp
] [
flow-label
flow-label
] [
fragment
] [
range
lower
upper
] [
time-range
time-range-name
] [
match-all
tcp-flag |
established
]
User Datagram Protocol (UDP)
[
sn
]
permit udp
{
source-ipv6-prefix
/
prefix-length
|
host
source-ipv6-address
|
any
} [
operator
port
[
port
] ] {
destination-ipv6-prefix
/
prefix-length
|
host
destination-ipv6-address
|
any
} [
operator
port
Summary of Contents for RG-S2600G-I Series
Page 1: ...1 CLI Reference Guide RG S2600G I Series Switches RGOS 10 4 3b16...
Page 5: ...5...
Page 505: ...CLI Reference TCP Configuration Commands Related commands Command Description...
Page 514: ...IP Routing Configuration Commands 1 IP Routing Configuration Commands...
Page 642: ...CLI Reference TACACS Configuration Commands host...
Page 652: ...CLI Reference 802 1X Configuration Commands Ruijie config if end...
Page 776: ...CLI Reference ND Snooping Configuration Commands...
Page 901: ...CLI Reference NFPP Configuration Commands...
Page 902: ...ACL QOS Configuration Commands 1 ACL Configuration Commands 2 QoS Configuration Commands...
Page 999: ...CLI Reference RLDP Configuration Command Command mode Privileged EXEC mode...
Page 1005: ...CLI Reference DLDP Configuration Commands...
Page 1191: ...CLI Reference Guide RSPAN Configuration Commands Platform Description N A...
Page 1192: ...CLI Reference Guide...