Config acl rule match dstl4port range | NETGEAR L3 manual

7000 Series L3 Managed Switch Reference Manual for Software v2.0

config acl rule match dstl4port range

This command specifies a destination layer 4 port match condition for an ACL rule referenced by the <aclid> and <rulenum>. The <startport> and <endport> parameters identify the first and last ports that are part of the port range. They have values from 0 to 65535. The ending port must have a value equal or greater than the starting port. The starting port, ending port, and all ports in between will be part of the destination port range.

Either this command or the config acl match destl4port keyword command may be used to specify a destination layer 4 port range as a match condition.

Format config acl rule match dstl4port range <aclid> <rulenum> <startport> <endport>

config acl rule match every

This command specifies a match condition in which all packets match for an ACL rule referenced by the <aclid> and <rulenum>. The parameter <true/false> indicates to reinforce or negate every match condition.

Format config acl rule match every <aclid> <rulenum> <true/false>

config acl rule match ipdscp

This command specifies the IP DiffServ Code Point (DSCP) field for an ACL rule referenced by the <aclid> and <rulenum>. The DSCP is defined as the high-order six bits of the Service Type octet in the IP header. The <dscpval> parameter identifies the DSCP field and is an integer from 0 to 63.

The commands to match IP DSCP, IP precedence, and IP TOS are alternative ways to specify a match criterion for the same Service Type field in the IP header, however each uses a different user notation.

Format config acl rule match ipdscp <aclid> <rulenum> <dscpval>

10-4	ACL Commands

Image 220

NETGEAR L3 manual Config acl rule match dstl4port range, Config acl rule match every, Config acl rule match ipdscp

Contents

Series L3 Managed Switch Reference Manual for Software Technical Support Canadian Department of Communications Compliance Statement Page Contents Chapter Quick Startup Page Viii Contents Page Page Security Commands System Utilities Chapter Routing Commands Xiv Contents Contents Chapter CLI Commands Differentiated Services Contents Xvii Chapter ACL Commands Appendix a Cabling Guidelines Index About this Manual Organization of This Manual Typographical Conventions Special Message Formats How to Navigate this Manual Html version of this manual How to Print this Manual Switch Management Overview Chapter Comparing Switch Management Methods Administration Console Telnet Interface Setting Up Your Switch Using Direct Console Access Connection Description Introduction to the Command Menu Interface Connection Settings ESC Chapter Web-Based Management Interface How to Log In to the GSM73xx GSM73xx IP address in browser address bar User name/password dialog box Web-Based Management Utility Introduction Interactive Switch Image GSM7312 System information GSM7324 Interactive switch image Menus Switch popup menus System-Wide Popup Menus 10 Switch popup menus Port-Specific Popup Menus Series L3 Managed Switch Reference Manual for Software CLI Command Format Config network parms is the command nameExample 2 config syslocation location Config lag deleteport is the command name CLI Command Values CLI Command Conventions CLI Annotations MacAddr Series L3 Managed Switch Reference Manual for Software Quick Starting the Switch Software Version Information Physical Port Data User Account Management Config users passwd user IP Address Uploading from Switch to Out-of-Band PC Only Xmodem Switch Image on Downloading from Out-of-Band PC to Switch Only Xmodem Traplog trap log Factory Defaults Downloading from Tftp Server Basic Configuration Examples Port Routing, RIP, and Ospf Configuration 11. Ospf Configuration Example RIP and Ospf Vlan Routing Series L3 Managed Switch Reference Manual for Software This example creates two router ports to run Ospf Vlan Example Creating the VLANs Solution System Information and Statistics Commands Text used to identify the product name of this switchShow inventory Show inventory Config sysname Config syslocationShow sysinfo Show sysinfo Config syscontact Show arp switchShow arp switch Show forwardingdb table Show stats port detailed slot.port Show stats port detailedPackets Received 64 Octets The total number of packets Series L3 Managed Switch Reference Manual for Software Packets Received with Series L3 Managed Switch Reference Manual for Software Packets Transmitted 256-511 Octets The total number Packets Transmitted 512-1023 Octets The total numberMulticast Packets Transmitted The total number of packets Broadcast Packets Transmitted The total number of packets 802.3x Pause Frames Received a count of MAC Control Show stats port summary Show stats port summary slot.port Show stats switch detailed Show stats switch detailed Series L3 Managed Switch Reference Manual for Software Show stats switch summary Show eventlogFile in which the event originated Line number of the event Show msglog Show traplogTask ID of the event Event code Management Commands Config network parmsConfig network protocol Show network Config network webmode Config network javamodeConfig prompt Show serial Config serial baudrate Config serial timeoutConfig snmpcommunity accessmode 9600 Config snmpcommunity create Config snmpcommunity deleteConfig snmpcommunity ipaddr Config snmpcommunity ipmask Config snmptrap create Config snmpcommunity modeShow snmptrap Config snmptrap delete Config snmptrap ipaddrConfig snmptrap mode Show trapflags Config trapflags bcaststorm Config trapflags authenticationConfig trapflags linkmode Config trapflags multiusers Config trapflags stpmodeConfig telnet maxsessions Show telnet Config telnet mode Config telnet timeoutShow forwardingdb agetime Show forwardingdb agetime fdbidall Device Configuration Commands Config forwardingdb agetimeShow switchconfig Config switchconfig broadcast Config switchconfig flowcontrol Able Config port adminmode Show port Config port linktrap Config port physicalmodeConfig port lacpmode Config port autoneg Config lag create Config lag addportShow lag Show lag logical slot.portall Config lag deleteport Config lag adminmodeConfig lag linktrap Config lag name Config lag deletelag Config lag stpmodeShow vlan summary Show vlan summary Config vlan detailed vlan id, where the ID is a Show vlan detailed Config vlan create Config vlan deleteConfig vlan name Config vlan makestatic Config vlan port tagging Config vlan participationShow vlan port Config vlan port acceptframe Config vlan port pvidAdmit All Config vlan port ingressfilter Config protocol createConfig protocol delete Config vlan port acceptframe allvlan Config protocol protocol add Config protocol protocol removeConfig protocol vlan add Config protocol vlan remove Config protocol interface add Config protocol interface removeShow garp info Show garp interface Specifies the interval between the transmission of Garp PDUs Config garp gmrp adminmode Config garp gmrp interfacemodeConfig garp gvrp adminmode Config garp gvrp interfacemode Config garp leavetimer Config garp jointimerConfig garp leavealltimer Config igmpsnooping adminmode Show igmpsnooping Config igmpsnooping groupmembershipinterval Config igmpsnooping maxresponseConfig igmpsnooping mcrtrexpiretime Config igmpsnooping interface mode Show mfdb table Show mfdb gmrp Show mfdb igmpsnooping Show mfdb staticfiltering Config mirroring create Show mfdb statsShow mirroring Show mirroring Config mirroring mode Config mirroring deleteShow macfilter Config macfilter remove Config macfilter createConfig macfilter addsrc Config macfilter adddest Config macfilter delsrcConfig macfilter deldest Spanning Tree Commands Show spanningtree summary Config spanningtree forceversion Config spanningtree adminmodeConfig spanningtree configuration name Config spanningtree port bpdumigrationcheck Config spanningtree configuration revisionShow spanningtree port Config spanningtree port mode Config spanningtree bridge maxageConfig spanningtree bridge hellotime Show spanningtree bridge Config spanningtree bridge priority Config spanningtree bridge forwarddelayShow spanningtree cst detailed Show spanningtree cst port summary Show spanningtree cst port detailed Config spanningtree cst port pathcost Config spanningtree cst port priorityAuto 128 Config spanningtree cst port edgeport Config spanningtree mst createConfig spanningtree mst delete Config spanningtree mst vlan add Config spanningtree mst vlan remove Config spanningtree mst priorityConfig spanningtree mst port pathcost Config spanningtree mst port priority List of multiple spanning trees IDs currently configured Show spanningtree mst summaryShow spanningtree mst detailed Instance Show spanningtree mst port summary Show spanningtree mst port detailed User Account Management Commands Show spanningtree vlanShow users Show spanningtree vlan vlan Config users add Config users passwdConfig users delete Config users snmpv3 authentication Config users snmpv3 accessmode Config users snmpv3 encryptionShow loginsession Security Commands Config loginsession closeConfig radius maxretransmit Config radius timeout Config radius accounting server add Config radius accounting modeConfig radius accounting server port Config radius accounting server remove Config radius accounting server secretConfig radius server add Config radius server port Config radius server remove Config radius server secretConfig radius server primary Config radius server msgauth Secret Configured Show radius summaryShow radius server summary Show radius server stats Configured IP address of the accounting server Show radius accounting summary Port in use by the accounting server Show radius accounting statsYes or No Config dot1x adminmode Config dot1x port initializeConfig dot1x port reauthenticate Show radius stats Config dot1x port controlmode Config dot1x port controldirConfig dot1x port quietperiod Config dot1x port transmitperiod Config dot1x port supptimeoutConfig dot1x port servertimeout Config dot1x port maxrequests Config dot1x port reauthenabled Sible values are Enabled and DisabledShow dot1x summary Show dot1x port summary Interface whose configuration is displayed Show dot1x port stats Config authentication login delete Config authentication login createClear dot1x port stats Config authentication login set Config dot1x defaultloginConfig dot1x login Config dot1x port users add Config dot1x port users remove Config users defaultloginConfig users login Show authentication login info Show authentication login users Show users authenticationSystem Utilities Show dot1x port users Save config Transfer upload modeLogout Transfer upload serverip Transfer upload filename Transfer upload datatype Transfer download mode Transfer upload startTransfer download serverip Transfer download path Transfer download filename Transfer download datatypeTransfer download start Clear transfer Clear config Clear passClear traplog Clear vlan Clear stats switch Reset systemClear igmpsnooping Ping Series L3 Managed Switch Reference Manual for Software Show arp table Routing CommandsShow arp table Config arp agetime Config arp cachesizeConfig arp create Config arp delete Show ip interface Config arp retriesShow ip interface slot.port Config interface encaps Config interface routingConfig ip interface mtu Are Ethernet or Snap Config ip interface netdirbcast Config ip interface createConfig ip interface delete Enable Config ip forwarding Config routingShow ip stats Show ip vlan Config ip vlan routing create Config ip vlan routing deleteShow router ip interface summary Show router ip interface summary Config router id Config router id routeridShow router ospf info Show router ospf info Config trapflags ospf Config router ospf adminmodeConfig router ospf asbr Config router ospf preference Show router ospf interface stats Show router ospf interface summary Config router ospf interface authtypekey Config router ospf interface areaidConfig router ospf interface interval dead Config router ospf interface interval hello Config router ospf interface interval retransmitConfig router ospf interface iftransitdelay Config router ospf interface mode Config router ospf interface priority Config router ospf interface costShow router ospf area info Which is the highest router priority Config router ospf area range create Show router ospf area range Config router ospf area range delete Config router ospf area stub metric valueConfig router ospf area stub metric type Config router ospf area stub summarylsa Config router ospf area stub create Config router ospf area stub deleteConfig router ospf area delete Show router ospf neighbor detailed Show router ospf neighbor table Show router ospf stub table Show router ospf lsdb summaryShow router ospf stub table Show router ospf lsdb summary Show router rip info Show router rip interface detailedShow router rip info Show router rip interface detailed Show router rip interface summary Config router rip adminmodeShow router rip interface summary Config router rip preference Config router rip interface authtypekeyConfig router rip interface defaultmetric Default password key is an empty string. Unauthenticated Config router rip interface mode Config router rip interface version receiveConfig router rip interface version send Both Config router ospf virtif create Show router ospf virtif detailedShow router ospf virtif summary Is the neighbor interface of the Ospf virtual interface Config router ospf virtif delete Config router ospf virtif authtypekeyConfig router ospf virtif transdelay Config router ospf virtif interval dead Config router ospf virtif interval hello Config router ospf virtif interval retransmitConfig router ospf exoverflowinterval Config router ospf extlsdblimit Show router route table Show router route bestroutesShow router route entry Show router route table Config router route create Show router route preferences Config router route delete Config router route preferenceConfig router route default create Config router route default delete Show router vrrp interface detailed Config router vrrp adminmodeShow router vrrp interface summary Is the IP Address that was configured on the virtual router Represents the state Master/backup of the virtual routerShow router vrrp interface stats Represents the router ID of the virtual router Config router vrrp interface adminmode Config router vrrp interface routerIDConfig router vrrp interface priority There is no default value for vrID Config router vrrp interface ipaddress Config router vrrp interface preemptmodeConfig router vrrp interface advinterval Config router vrrp interface authdetails Config router vrrp removedetails Config router rtrdiscovery adminmodeConfig router rtrdiscovery maxinterval Config router rtrdiscovery mininterval Config router rtrdiscovery lifetime Config router rtrdiscovery addressConfig router rtrdiscovery preference Show router rtrdiscovery Config router bootpdhcprelay circuitidoptionmode Show router bootpdhcprelayConfig router bootpdhcprelay adminmode Config router bootpdhcprelay minwaittime Config router bootpdhcprelay maxhopcountConfig router bootpdhcprelay serverip Series L3 Managed Switch Reference Manual for Software CLI Commands Differentiated Services General Commands Config diffserv adminmode Class Commands Config diffserv class create acl Config diffserv class create any Config diffserv class create allConfig diffserv class delete Config diffserv class rename Config diffserv class match cosConfig diffserv class match dstip None Config diffserv class match dstl4port keyword Config diffserv class match dstl4port number Config diffserv class match dstmac Config diffserv class match dstl4port rangeConfig diffserv class match every Config diffserv class match ipdscp Config diffserv class match ipprecedence Config diffserv class match iptos Config diffserv class match protocol keyword Config diffserv class match protocol number Config diffserv class match refclass Config diffserv class match srcip Config diffserv class match srcl4port keyword Config diffserv class match srcl4port number Config diffserv class match srcmac Config diffserv class match srcl4port rangeConfig diffserv class match vlan Policy Commands Config diffserv policy create Config diffserv policy delete Config diffserv policy renameConfig diffserv policy class add Config diffserv policy class remove Config diffserv policy bandwidth kbps Config diffserv policy bandwidth percent Config diffserv policy expedite kbps Bandwidth all forms, Shape Peak Config diffserv policy mark cos Config diffserv policy expedite percentOut Config diffserv policy mark ipdscp Config diffserv policy mark ipprecedenceConfig diffserv policy police action conform drop Mark IP Precedence, Police all forms Config diffserv policy police action conform markprec Config diffserv policy police action conform markdscpConfig diffserv policy police action conform send Config diffserv policy police action exceed drop Config diffserv policy police action exceed markdscp Config diffserv policy police action exceed send Config diffserv policy police action exceed markprecConfig diffserv policy police action nonconform drop Config diffserv policy police action nonconform markprec Config diffserv policy police action nonconform markdscpConfig diffserv policy police action nonconform send Config diffserv policy police style simple Config diffserv policy police style singlerateAllowed for a given class instance in a particular policy Mark IP DSCP, Mark IP Precedence Config diffserv policy police style tworate Config diffserv policy randomdrop Config diffserv policy shape average Service Commands Config diffserv policy shape peakNeither of the shaping rate parameters is allowed to exceed Applied Config diffserv service remove Config diffserv service addParticular direction at any one time Show Commands Show diffserv class detailed Show diffserv class summary Show diffserv info Current number of entries rows in the Service Table Show diffserv policy detailedName of this policy Policy type, namely whether it is an inbound or outbound Denotes the mark/re-mark value used as the Dscp for traffic Show diffserv policy summary Show diffserv service info detailed Show diffserv service info summary Slot number and port number of the interface slot.port Show diffserv service stats detailedDirection Name of this class instance Show diffserv service stats summary Series L3 Managed Switch Reference Manual for Software Show acl summary Show acl detailed Config Commands Config acl createConfig acl delete Config acl rule create Config acl rule delete Config acl rule actionConfig acl rule match dstip Config acl rule match dstl4port keyword Config acl rule match every Config acl rule match dstl4port rangeConfig acl rule match ipdscp Config acl rule match ipprecedence Config acl rule match iptos Config acl rule match protocol number Config acl rule match protocol keywordConfig acl rule match srcip Config acl rule match srcl4port range Config acl rule match srcl4port keywordConfig acl interface add Config acl interface remove Appendix a Cabling Guidelines Fast Ethernet Cable Guidelines Category 5 Cable Specifications Category 5 Cable Specifications Category 5 Cable Requirements Twisted Pair Cables Patch Panels and Cables Figure A-2illustrates crossover twisted pair cable Using 1000BASE-T Gigabit Ethernet over Category 5 Cable Cabling Near End Cross Talk Next RJ-45 Plug and RJ-45 ConnectorsPatch Cables PIN Normal Assignment on Uplink Assignment on Ports 1 to Conclusion Appendix B 802.1x Port-Based Authentication Overview Figure B-1 802.1x authentication Series L3 Managed Switch Reference Manual for Software Series L3 Managed Switch Reference Manual for Software Appendix C Glossary Numeric See Area Border Router on See Application Programming Interface on See Bridge Protocol Data Unit on Packet sent to all devices on a network See Command Line Interface on See Device Application Programming Interface on See Distance-Vector Multicast Routing Protocol. on Computer, printer, or server that is connected to a network See Generic Attribute Registration Protocol. on See Garp Information Propagation on See Internet Group Management Protocol on See Joint Test Action Group on MAC Megabits per second See Multiplexing on See Network Address Translation on See Operating System Application Programming Interface on See Protocol Independent Multicast Dense Mode on See Quality of Service on See Routing Information Protocol on Model of Serial Management Controller from Motorola Static Random Access Memory See TLS on An abbreviation that represents Unit, Slot, Port Models Series L3 Managed Switch Reference Manual for Software Series L3 Managed Switch Reference Manual for Software Index Index Gvrp Index Index STP Xmodem