原创力文档- 1、本文档共18页,可阅读全部内容。
- 2、原创力文档(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。
- 3、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 4、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
- 5、该文档为VIP文档,如果想要下载,成为VIP会员后,下载免费。
- 6、成为VIP后,下载本文档将扣除1次下载权益。下载后,不支持退款、换文档。如有疑问请联系我们。
- 7、成为VIP后,您将拥有八大权益,权益包括:VIP文档下载权益、阅读免打扰、文档格式转换、高级专利检索、专属身份标志、高级客服、多端互通、版权登记。
- 8、VIP文档为合作方或网友上传,每下载1次, 网站将根据用户上传文档的质量评分、类型等,对文档贡献者给予高额补贴、流量扶持。如果你也想贡献VIP文档。上传文档
查看更多
cisco 路由器防火墙配置命令及实例(Cisco router firewall configuration commands and examples)
cisco 路由器防火墙配置命令及实例(Cisco router firewall configuration commands and examples)
Cisco router firewall configuration commands and examples
(source: )
First, access-list is used to create access rules.
(1) creating a standard access list
Access-list [normal] | special listnumber1 {permit deny} source-addr | [source-mask]
(2) create an extended access list
Access-list [normal] | special listnumber2 {permit deny} | protocol source-addr source-mask [operator port1] dest-addr [port2] dest-mask [operator port1 port2] | [icmp-type] [icmp-code] [log]
(3) delete access list
No access-list {normal} special {all listnumber | | [subitem]}
[parameter description]
Normal specifies that rules are added to normal time periods.
Special specifies that a rule is added to a special period of time.
Listnumber1 is a value between 1 and 99, which indicates that the rule is a standard access list rule.
Listnumber2 is a value between 100 and 199, which indicates that the rule is an extended access list rule.
Permit indicates that packets that satisfy conditions are passed.
Deny indicates that messages that satisfy conditions are forbidden to pass.
Protocol is the protocol type, supports ICMP, TCP, UDP and so on. Other protocols also support, at this point there is no concept of port comparison. For IP, it has special meaning and represents all IP protocols.
Source-addr is the source address.
Source-mask is the source address pass, and is optional in the standard access list. Without input, the represents the pass.
Dest-addr is the destination address.
Dest-mask is the destination address gateway.
Operator[optional] port operator, in agreement with type TCP or UDP port, support comparison operations are equal to (EQ), (GT), less than (LT), is not equal to (NEQ) or between (range); if an operator is range, is behind the need to two ports.
Port1 occurs when the protocol type is TCP or UDP, and a preset value, such as Telnet, or 0~65535, that can be set for the keyword.
Port2 occurs when the pro
您可能关注的文档
- 625讲话最新表述(The latest expression of the 625 speech).doc
- 6第六课从天窗中消失 2(6, sixth lessons disappear from the skylight 2).doc
- 6秒钟分辨真假钻石(6 seconds to distinguish between genuine and fake diamonds).doc
- 6级高频词汇5(6 high frequency vocabulary 5).doc
- 6思品(6 thoughts).doc
- 6门学科学习方法(6 discipline learning methods).doc
- 7-10月-研发人员职业素养(7-10 months - R & D staff professionalism).doc
- 7-11月-企业内部培训师培训(ttt)(7-11 months - in-house trainer training (TTT)).doc
- 69-二天课程 课程根据了gd(69- the two day course is based on GD).doc
- 7.2教学过程(7.2 teaching process).doc
- cisco硬件防火墙(Cisco hardware firewall).doc
- cisco_asa防火墙恢复初始化(Cisco_asa firewall restore initialization).doc
- cisco pix防火墙配置(Cisco PIX防火墙配置).doc
- cisco防火墙配置(Cisco firewall configuration).doc
- cissp认证简介(CISSP certification profile).doc
- ck40n常见报错(Ck40n common mistakes).doc
- clannad 游戏完美通关(Clannad game perfect clearance).doc
- cmd命令全集(CMD command complete).doc
- cl结构网站(CL structure website).doc
- cod4控制台命令(Cod4 console command).doc
文档评论(0)