AT-FS750/24-41 Web User Interface Manual
7-4
Figure 69 – ACL > IP Extended ACL
Specify the ACL ID of this rule. The possible ID of IP Standard ACL is
1001-65535.
Specify the action for packet matched. Select Permit to process the packets,
Deny to discard them.
Matching packet with a specific source IP address.
Matching packet with a range of source IP address. For example 172.17.5.1
with mask 255.255.255.0 means 172.15.5.0~255.
Matching packet with a specific destination IP address.
Matching packet with a range of destination IP address. For example
172.17.5.1 with mask 255.255.255.0 means 172.15.5.0~255.
Specify the ports to apply this ACL rule.
Matching the L4 protocol type of the packet. The options are: icmp, ip, tcp,
udp, ospf, pim and other.
When selecting others, insert the protocol ID in the right column.
Matching ICMP packets with specific message type. The possible code is
0-255.
Matching ICMP packets with specific message code. The possible type is
0-255.
Matching packets with specific DSCP type. The possible value is 0-63.
Matching packets with specific ToS value. The possible value is 0-7
Macthing packets with a specific TCP acknowledge flag. The options are:
Establish – TCK ack packet.
Not Establish - TCP ack-not packet.
Any - Any kind of TCP acknowledge packet.
Macthing packets with a specific TCP reset flag. The options are:
Set - TSP reset packet.
Not Set - TCP reset-not packet.
Any - Any kind of TCP reset packet.
Matching packets with a specific L4 source port.
Matching packet with a range of source port. For example source port 23 with
mask FFFE means 22~23. The mask options are: 8000, C000, E000, F000,
F800, FC00, FE00, FF00, FF80, FFC0, FFE0, FFF0, FFF8, FFFC, FFFE,
FFFF.
Matching packets with a specific L4 destination port.
Comments to this Manuals