• Aucun résultat trouvé

IOS IP

N/A
N/A
Info
Télécharger
Protected

Academic year: 2022

Partager "IOS IP"

Copied!
1
0
0

Chargement.... (Voir le texte intégral maintenant)

Texte intégral

(1)

packetlife.net

by Jeremy Stretch v2.0

IOS IP V 4 A CCESS L ISTS

Standard ACL Syntax

permit

Actions

deny remark evaluate

Allow matched packets Deny matched packets

Record a configuration comment Evaluate a reflexive ACL

Extended ACL Syntax

! Legacy syntax

access-list <number> {permit | deny} <source> [log]

! Modern syntax

ip access-list standard {<number> | <name>}

[<sequence>] {permit | deny} <source> [log]

ACL Numbers

TCP Options 1-99

1300-1999 IP standard 100-199

2000-2699 IP extended 200-299 Protocol 300-399 DECnet 400-499 XNS

ack Match ACK flag fin Match FIN flag psh Match PSH flag rst Match RST flag syn Match SYN flag

Troubleshooting

show access-lists [<number> | <name>]

show ip access-lists [<number> | <name>]

show ip access-lists interface <interface>

show ip access-lists dynamic show ip interface [<interface>]

show time-range [<name>]

! Legacy syntax

access-list <number> {permit | deny} <protocol> <source> [<ports>] <destination> [<ports>] [<options>]

! Modern syntax

ip access-list extended {<number> | <name>}

[<sequence>] {permit | deny} <protocol> <source> [<ports>] <destination> [<ports>] [<options>]

500-599 Extended XNS 600-699 Appletalk 700-799 Ethernet MAC 800-899 IPX standard 900-999 IPX extended 1000-1099 IPX SAP 1100-1199 MAC extended 1200-1299 IPX summary

urg established

Match URG flag

Source/Destination Definitions any Any address

host <address> A single address

<network> <mask> Any address matched by the wildcard mask IP Options

dscp <DSCP> Match the specified IP DSCP fragments Check non-initial fragments option <option> Match the specified IP option precedence {0-7} Match the specified IP precedence

ttl <count> Match the specified IP time to live (TTL) TCP/UDP Port Definitions

eq <port> Not equal to

lt <port> Greater than

range <port> <port> Matches a range of port numbers neq <port>

gt <port>

Equal to Less than

Miscellaneous Options reflect <name> Create a reflexive ACL entry

time-range <name> Enable rule only during the given time range Applying ACLs to Restrict Traffic

interface FastEthernet0/0

ip access-group {<number> | <name>} {in | out}

Match packets in an established session Logging Options

log Log ACL entry matches

log-input

Log matches including ingress interface and source MAC address

Références

Télécharger maintenant ( PDF - 1 Page - 43.16 KB )

Documents relatifs

Hoholau lt;signed&gt

I, Elda de Carvalho, as the coordinator of Moris Foun Group, which weave Tais in Uani Uma Village, declare that our group is surely ready that we agree to the government’s program and

p;=C&gt;I;t@B&lt;?Tk€}MF&gt;?EFEN;t©H=&gt;+ª «8z R‚T;t~xH=&gt;.&lt;sw0J5k€}*C&gt;.nU&gt;?&lt;A~F&gt;ApM

[r]

et &lt;textarea&gt;…&lt;/textarea&gt

dans la balise du paragraphe (méthode sans fichier css) pour changer la couleur du mot test en rouge… puis affecter la classe soustitrecolor à la balise. &lt;p&gt; en

Self-Assembled Cofacial Zinc-Porphyrin Supramolecular Nanocapsules as Tuneable &lt;sup&gt;1&lt;/sup&gt; O &lt;sub&gt;2&lt;/sub&gt; Photosensitizers

Furthermore, It should be noted that a similar trend was observed by comparing the bleaching of 1 and the tetracarboxyphenyl zinc porphyrin (Zn-TCPP), indicating that the

#include &lt;math.h&gt

[r]

#include &lt;stdio.h&gt

[r]

#include &lt;cstdlib&gt

Ecrire une fonction ´ int simul(int m) qui compare le nombre de couleurs utilis´ ees par l’algo exact et par DSATUR pour colorier m graphes al´ eatoires pour n et p fix´

Quelssontlesélémentsenfantsdel'élément&lt;html&gt;? d- Quels sont les éléments enfants de l'élément &lt;head&gt

a - Choisir des 7 mots de telle sorte qu'ils ontiennent tous les aratères aentués possibles. b - Erire une page HTML ontenant une ou deux phrases onstitués des