TP-Link T2600G-52TS TL-SG3452 T2600G-28TS V1 CLI Reference Guide - Page 218

time-segment -- The time-range for the rule to take effect. By default, it is not limited. frag -- Enable/Disable Fragment. By default, it is disabled. If Fragment is enabled, this rule will process all the fragments and the last piece of fragment will be always forwarded. dscp -- Specify the dscp value, ranging from 0 to 63. s-port -- The source port number. d-port -- The destination port number. tcpflag -- Specify the flag value when using TCP protocol. protocol -- Configure the value of the matching protocol. tos -- Enter the IP ToS contained in the rule. pre -- Enter the IP Precedence contained in the rule. Command Mode Global Configuration Mode Example Create an Extended-IP ACL whose ID is 2220, and add Rule 10 for it. In the rule, the source IP address is 192.168.0.100, the source IP address mask is 255.255.255.0, the time-range for the rule to take effect is tSeg1, and the packets match this rule will be forwarded by the switch: T2600G-28TS(config)# access-list create 2220 T2600G-28TS(config)# access-list extended 2220 rule 10 permit sip 192.168.0.100 smask 255.255.255.0 tseg tSeg1 29.10 rule Description The rule command is used to configure MAC ACL rule. To delete the corresponding rule, please use no rule command. Syntax rule rule-id { deny | permit } [[ smac source-mac ] smask source-mac-mask ] [[ dmac destination-mac ] dmask destination-mac-mask ] [ vid vlan-id ] [ type ethernet-type ] [ pri user-pri ] [ tseg time-segment ] no rule rule-id Parameter rule-id -- The rule ID. 202