UMN:CLI
User Manual
V8102
246
solicitation | source-quench | source-route-
failed | time-exceeded | timestamp-reply |
timestamp-request | traceroute
|
ttl-exceeded
|
unreachable
}] [{
precedence
<0-7> |
tos
<0-
255> |
dscp
<0-63>}] [{
log
|
log-input
}
tag
WORD
]
[<1-2147483647>] {
deny
|
permit
}
tcp
{
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-BITS
} {
any
|
eq PORT
|
gt PORT
|
lt PORT
|
neq PORT
|
range RANGE
} {
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-BITS
} {
any
|
eq PORT
|
gt PORT
|
lt
PORT
|
neq PORT
|
range RANGE
}
[{
TCP_FLAG
|
precedence
<0-7> |
tos
<0-255> |
dscp
<0-63>}] [{
log
|
log-input
}
tag WORD
]
Specifies a deny or permit statement of
the extended ACL based on TCP.
eq: match only packets on a given port
number
gt: match only packets with a greater port
number
lt: match only packets with a lower port
number
neq: match only packets not on a given
port number
range: match only packets in the range of
port numbers
[<1-2147483647>] {
deny
|
permit
}
udp
{
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-BITS
} {
any
|
eq PORT
|
gt PORT
|
lt PORT
|
neq PORT
|
range RANGE
} {
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-BITS
} {
any
|
eq PORT
|
gt PORT
|
lt
PORT
|
neq PORT
|
range RANGE
} [{
prece-
dence
<0-7> |
tos
<0-255> |
dscp
<0-63>}] [{
log
|
log-input
}
tag WORD
]
Specifies a deny or permit statement of
the extended ACL based on UDP.
eq: match only packets on a given port
number
gt: match only packets with a greater port
number
lt: match only packets with a lower port
number
neq: match only packets not on a given
port number
range: match only packets in the range of
port numbers
[<1-2147483647>] {
deny
|
permit
}
igmp
{
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-BITS
} {
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-BITS
}
[{
dvmrp
|
host-query
|
host-report
|
pim
|
trace
}]
[{
precedence
<0-7> |
tos
<0-255> |
dscp
<0-
63>}] [{
log
|
log-input
}
tag WORD
]
Specifies a deny or permit statement of
the extended ACL based on IGMP.
remark LINE
Writes comments for this access-list.
LINE: access list entry comments up to
100 characters
To delete the configured extended ACL entry, use the following command.
Command
Mode
Description
no
<1-2147483647>
Extended
ACL Mode
Deletes an entry of the ex-
tended ACL.
no
{
deny
|
permit
}
{<0-255> |
ahp
|
eigrp
|
esp
|
gre
|
ip
|
ipinip
|
nos
|
ospf
|
pcp
|
pim
} {
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-BITS
} {
any
|
host A.B.C.D
|
A.B.C.D
WILDCARD-
BITS
} [{
precedence
<0-7> |
tos
<0-255> |
dscp
<0-63>}]