HP 445942-001 173

Configuration Commands

ACL TCP/UDP Filter configuration

These commands allow you to define TCP/UDP matching criteria for an ACL. The following table describes the TCP/UDP Filter Configuration commands.

Table 158 TCP/UDP Filter Configuration commands

CommandDescription

access-control list <1-384> tcp- udp source-port <1-65535> {<port mask>}

Defines a source port for the ACL. If defined, traffic with the specified TCP or UDP source port will match this ACL. Specify the port number. Some of the well-known ports include:

20—ftp-data 21—ftp 22—ssh 23—telnet 25—smtp 37—time 42—name 43—whois 53—domain 69—tftp 70—gopher 79—finger 80—http

	Command mode: Global configuration

access-control list <1-384> tcp-	Defines a destination port for the ACL. If defined, traffic with the
udp destination-port <1-65535>	specified TCP or UDP destination port will match this ACL. Specify
{<port mask>}	the port number, just as with source-portabove.
	the port number, just as with source-portabove.
	Command mode: Global configuration

access-control list <1-384> tcp-	Defines a TCP/UDP flag for the ACL.
udp flags <value (0x0-0x3f)>	Command mode: Global configuration
	Command mode: Global configuration

default access-control list <1	Resets the TCP/UDP parameters for the ACL to their default values.
384> tcp-udp	Command mode: Global configuration
	Command mode: Global configuration

show access-control list [<1-384>]	Displays the current TCP/UDP Filtering parameters.
tcp-udp	Command mode: All except User EXEC
	Command mode: All except User EXEC

173