Netgear XSM4348CS CLI Manual Software Version 12.x - Page 973
Table 14., IP ACL command parameters continued
![]() |
View all Netgear XSM4348CS manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 973 highlights
M4300 Intelligent Edge Series Fully Managed Stackable Switches Table 14. IP ACL command parameters (continued) Parameter Description [{range {portkey | startport} {portkey | endport} | {eq | neq | lt | gt} {portkey | 0-65535}] Note: This option is available only if the protocol is tcp or udp. Specifies the layer 4 port match condition for the IP ACL rule. Port number can be used, which ranges from 0-65535, or the portkey, which can be one of the following keywords: For tcp protocol: bgp, domain, echo, ftp, ftp-data, http, smtp, telnet, www, pop2, or pop3. For udp protocol: domain, echo, ntp, rip, snmp, tftp, time, or who. Each of these keywords translates into its equivalent port number. When range is specified, the IP ACL rule matches only if the layer 4 port number falls within the specified port range. The startport and endport parameters identify the first and last ports that are part of the port range. They have values from 0 to 65535. The ending port must have a value equal to or greater than the starting port. The starting port, ending port, and all ports in between will be part of the layer 4 port range. When eq is specified, IP ACL rule matches only if the layer 4 port number is equal to the specified port number or portkey. When lt is specified, IP ACL rule matches if the layer 4 port number is less than the specified port number or portkey. It is equivalent to specifying the range as 0 to . When gt is specified, IP ACL rule matches if the layer 4 port number is greater than the specified port number or portkey. It is equivalent to specifying the range as to 65535. When neq is specified, IP ACL rule matches only if the layer 4 port number is not equal to the specified port number or port key. Two rules are added in the hardware one with range equal to 0 to and one with range equal to . Note: Port number matches only apply to unfragmented or first fragments. dstip dstmask | any | host dstip Specifies a destination IP address and netmask for match condition of the IP ACL rule. Specifying any implies specifying dstip as 0.0.0.0 and dstmask as 255.255.255.255. Specifying host A.B.C.D implies dstip as A.B.C.D and dstmask as 0.0.0.0. [precedence precedence | tos tos [tosmask] | dscp dscp] Specifies the TOS for an IP ACL rule depending on a match of precedence or DSCP values using the parameters precedence, tos or dscp. tosmask is an optional parameter. Quality of Service Commands 973 CLI Command Reference Manual
![](/manual_guide/products/netgear-m43008x8f-cli-manual-software-version-12x-6ae8ad6/973.png)