Netgear GSM7312 FSM7326P User Manual - Page 270

User Manual for the NETGEAR 7300 Series Layer 3 Managed Switch Software Configuration Commands access-list This command creates an Access Control List (ACL) that is identified by the parameter . The ACL number is an integer from 1 to 199. The range 1 to 99 is for normal ACL List and 100 to 199 is extended ACL List. The ACL rule is created with the option of permit or deny. The protocol to filter for an ACL rule is specified by giving the protocol to be used like cmp,igmp,ip,tcp,udp. The command specifies a source ip address and source mask for match condition of the ACL rule specified by the srcip and srcmask parameters.The source layer 4 port match condition for the ACL rule are specified by the port value parameter.The and parameters identify the first and last ports that are part of the port range. They have values from 0 to 65535. The ending port must have a value equal or greater than the starting port. The starting port, ending port, and all ports in between will be part of the destination port range.The parameter uses a single keyword notation and currently has the values of domain, echo, ftp, ftpdata, http, smtp, snmp, telnet, tftp, and www. Each of these values translates into its equivalent port number, which is used as both the start and end of a port range. The command specifies a destination ip address and destination mask for match condition of the ACL rule specified by the dstip and dstmask parameters.The command specifies the TOS for an ACL rule depending on a match of precedence or DSCP values using the parameters tos, tosmask, dscp. Default none Format access-list {( {deny | permit} ) | ( { {deny | permit} {evry | {{icmp | igmp | ip | tcp | udp | } [{eq { | } | range }] [{eq { | } | range }] [precedence ] [tos ] [dscp ]}})} Mode Global Config no access-list This command deletes an ACL that is identified by the parameter from the system. Format no access-list 11-2 202-10009-01_060204 CLI Commands: ACL