Enterasys Networks 9034313-07 manual Insert replace

deny permit

Denies or permits access if specified conditions are met.

protocol

Specifies an IP protocol for which to deny or permit access. Valid values

and their corresponding protocols are:

• ip ‐ Any Internet protocol

• udp ‐ User Datagram Protocol

• tcp ‐ Transmission Control Protocol

• icmp ‐ Internet Control Message Protocol

source

Specifies the network or host from which the packet will be sent. Valid

options for expressing source are:

• IP address or range of addresses (A.B.C.D)

• any ‐ Any source host

• host source ‐ IP address of a single source host

source‐wildcard

(Optional) Specifies the bits to ignore in the source address.

eq port

(Optional) Applies access rules to TCP or UDP source and/or destination

port numbers equal to the specified port number.

Port numbers can range from 0 to 65535.

Note: This parameter is not available when you specify the icmp protocol.

destination

Specifies the network or host to which the packet will be sent. Valid options

for expressing destination are:

• IP address (A.B.C.D)

• any ‐ Any destination host

• host source ‐ IP address of a single destination host

destination‐wildcard

(Optional) Specifies the bits to ignore in the destination address.

insert replace

(Optional) Inserts this new entry before a specified entry in an existing

entryno

ACL, or replaces a specified entry with this new entry.

move destination

(Optional) Moves a sequence of access list entries before another entry.

source1 source2

Destination is the number of the existing entry before which this new entry

will be moved. Source1 is a single entry number or the first entry number in

the range to be moved. Source2 (optional) is the last entry number in the

range to be moved. If source2 is not specified, only the source1 entry will be

moved.