280
EES4710BD 10 Slots L2/L3/L4 Chassis Switch
There are several sub-sections in this category:
z ACL number (100-199)
z Rule - permit or deny
z Source address type - Specified IP address or any randomly allocated IP address
z Source IP address
z Reverse network mask
z Target address type - Specified IP address or any randomly allocated IP address
z Destination IP address
z Reverse network mask
z IP precedence
z TOS
Regarding “ICMP numeric extended ACL”, there are two sub-categories:
z ICMP type
z ICMP code
Regarding “IGMP numeric extended ACL”, there is one sub-category:
z IGMP type
Regarding “TCP numeric extended ACL”, there are three sub-categories:
z Source port
z Target port
z TCP sign
Regarding “UDP numeric extended ACL”, there are two sub-categories:
z Source port
z Target port
Regarding “numeric extended ACL for other protocols”, there is one sub-category: Matched
protocol.
z Matched protocol - includes IP, EIGRP, OSPF, IPINIP and Input Protocol manually. If user
selects to input manually, they can just simply key-in the protocol number in the right hand
side of icon.
Example: a user wants to configure the “ Add TCP numeric extended ACL” with the ACL number
of 110, deny the source IP address of 10.0.0.0/24 section, and make the target port is 21. Please refer
the following configurations and then click the icon of “Add”.