原创力文档- 1、本文档共18页,可阅读全部内容。
- 2、原创力文档(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。
- 3、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 4、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
查看更多
思科路由器防火墙配置命令(CISCO router firewall configuration command)
思科路由器防火墙配置命令(CISCO router firewall configuration command)
Router firewall configuration command
Reading text options: black red green blue yellow white grey blue background white pink grey green blue black blue brown Size 9 pt10 PT12 PT14 pt16 pt18 pt24 PT30 Pt font bold normal auto scrolling [left] button to stop
First, access-list is used to create access rules.
(1) creating a standard access list
Access-list [normal] | special listnumber1 {permit deny} source-addr | [source-mask]
(2) create an extended access list
Access-list [normal] | special listnumber2 {permit deny} | protocol source-addr source-mask [operator port1] dest-addr [port2] dest-mask [operator port1 port2] | [icmp-type] [icmp-code] [log]
(3) delete access list
No access-list {normal} special {all listnumber | | [subitem]}
[parameter description]
Normal specifies that rules are added to normal time periods.
Special specifies that a rule is added to a special period of time.
Listnumber1 is a value between 1 and 99, which indicates that the rule is a standard access list rule.
Listnumber2 is a value between 100 and 199, which indicates that the rule is an extended access list rule.
Permit indicates that packets that satisfy conditions are passed.
Deny indicates that messages that satisfy conditions are forbidden to pass.
Protocol is the protocol type, supports ICMP, TCP, UDP and so on. Other protocols also support, at this point there is no concept of port comparison. For IP, it has special meaning and represents all IP protocols.
Source-addr is the source address.
Source-mask is the source address pass, and is optional in the standard access list. Without input, the represents the pass.
Dest-addr is the destination address.
Dest-mask is the destination address gateway.
Operator[optional] port operator, in agreement with type TCP or UDP port, support comparison operations are equal to (EQ), (GT), less than (LT), is not equal to (NEQ) or between (range); if an operator is range, is behind the need to
您可能关注的文档
- 平生只做一件事(Do one thing in your life).doc
- 平面构成基础知识(Fundamentals of plane formation).doc
- 平面设计参考资料(Reference material for graphic design).doc
- 平面直角坐标系统(Plane Cartesian coordinate system).doc
- 平面设计师应具备的知识——印刷常识(The knowledge that graphic designers should possess -- common sense in printing).doc
- 年代秀节目规则(Age show rules).doc
- 年关临近 如何防抢(How the year near the robbery).doc
- 年夜饭3(New year's Eve dinner 3).doc
- 常见窃电方式(Common methods of stealing electricity).doc
- 常见网络问题(Common network problems).doc
文档评论(0)