Netgear XSM4324FS CLI Manual Software Version 12.x - Page 971
deny all, mirror, assign-queue, redirect, permit, time-range
View all Netgear XSM4324FS manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 971 highlights
M4300 Intelligent Edge Series Fully Managed Stackable Switches Format Mode [sequence-number] {deny | permit} {every | {{eigrp | gre | icmp | igmp | ip | ipinip | ospf | pim | tcp | udp | 0-255} {srcip srcmask | any | host srcip} [{range {portkey | startport} {portkey | endport} | {eq | neq | lt | gt} {portkey | 0-65535}] {dstip dstmask | any | host dstip} [{range {portkey | startport} {portkey | endport} | {eq | neq | lt | gt} {portkey | 0-65535}] [flag [+fin | -fin] [+syn | -syn] [+rst | -rst] [+psh | -psh] [+ack | -ack] [+urg | -urg] [established]] [icmp-type icmp-type [icmp-code icmp-code] | icmp-message icmp-message] [igmp-type igmp-type] [fragments] [precedence precedence | tos tos [tosmask] | dscp dscp]}} [time-range time-range-name] [log] [assign-queue queue-id] [{mirror | redirect} {unit/slot/port | lag lag-group-id}] [rate-limit rate burst-size] Ipv4-Access-List Config Note: An implicit deny all IP rule always terminates the access list. Note: The mirror parameter allows the traffic matching this rule to be copied to the specified unit/slot/port, while the redirect parameter allows the traffic matching this rule to be forwarded to the specified unit/slot/port. The assign-queue and redirect parameters are only valid for a permit rule. For IPv4, the following are not supported for egress ACLs: • A match on port ranges. • The rate-limit command. The time-range parameter allows imposing time limitation on the IP ACL rule as defined by the specified time range. If a time range with the specified name does not exist and the ACL containing this ACL rule is applied to an interface or bound to a VLAN, then the ACL rule is applied immediately. If a time range with specified name exists and the ACL containing this ACL rule is applied to an interface or bound to a VLAN, then the ACL rule is applied when the time-range with specified name becomes active. The ACL rule is removed when the time-range with specified name becomes inactive. For information about configuring time ranges, see Time Range Commands for Time-Based ACLs on page 990. The assign-queue parameter allows specification of a particular hardware queue for handling traffic that matches this rule. The allowed queue-id value is 0-(n-1), in which n is the number of user configurable queues available for the hardware platform. The assign-queue parameter is valid only for a permit rule. Quality of Service Commands 971 CLI Command Reference Manual