Specifying source and destination port range

Last Updated : Nov 06, 2012 |

Procedure

  1. To specify a range of source and destination ports to which the rule applies, use any of the following commands followed by either port name or port number range criteria:

    • tcp source-port

    • tcp destination-port

    • udp source-port

    • udp destination-port

    This command also sets the IP protocol parameter to TCP or UDP.

    For more information about these commands, see Summary of access control list commands, Summary of QoS list commands, or Avaya CLI Reference.

  2. Select the port name or number range criteria using one of the following options:

    • To set a range of port numbers to which the rule applies, type range, followed by two port numbers.

    • To set a port name or port number to which the rule applies, type eq (equal) followed by a port name or number.

    • To apply the rule to all ports with a name or number greater than the specified name or number, type gt (greater than) followed by a port name or port number.

    • To apply the rule to all ports with a name or number less than the specified name or number, type lt (less than) followed by a port name or port number.

    • To apply the rule to all port names and port numbers, type any

      Use the no form of the appropriate command to specify that the rule does not apply to the ports defined by the command.

Example

The following command specifies a source TCP port named telnet for rule 1 in access control list 301:

Gxxx-001(ACL 301/ip rule 1)# tcp source-port eq telnet

The following command specifies any destination UDP port less than 1024 for rule 3 in QoS list 404:

Gxxx-001(QoS 404/rule 3)# udp destination-port lt 1024

The following command specifies any destination TCP port in the range 5000 through 5010 for rule 1 in access control list 301:

Gxxx-001(ACL 301/ip rule 1)# tcp destination-port range 5000 5010

The following command specifies any source TCP port except a port named http for rule 7 in access control list 304:

Gxxx-001(ACL 304/ip rule 7)# no tcp source-port eq http