Users Guide

Table Of Contents
any (Optional) Enter the keyword any to specify any source or destination IP address.
host ip-address (Optional) Enter the IPv4 address to use a host address only.
operator (Optional) Enter a logical operator to match the packets on the specified port number.
The following options are available:
eq Equal to
gt Greater than
lt Lesser than
neq Not equal to
range Range of ports, including the specified port numbers.
ack (Optional) Set the bit as acknowledgment.
fin (Optional) Set the bit as finishno more data from sender.
psh (Optional) Set the bit as push.
rst (Optional) Set the bit as reset.
syn (Optional) Set the bit as synchronize.
urg (Optional) Set the bit set as urgent.
capture (Optional) Capture packets the filter processes.
count (Optional) Count packets the filter processes.
byte (Optional) Count bytes the filter processes.
dscp value (Optional) Permit a packet based on the DSCP values, from 0 to 63.
fragment (Optional) Use ACLs to control packet fragments.
log (Optional) Enables ACL logging. Information about packets that match an ACL rule are logged.
Default
Not configured
Command Mode IPV4-ACL
Usage
Information
OS10 cannot count both packets and bytes; when you enter the count byte options, only bytes
increment. The no version of this command removes the filter, or use the no seq sequence-number
command if you know the filters sequence number.
Example
OS10(config)# ip access-list egress
OS10(conf-ipv4-acl)# seq 5 permit tcp any any capture session 1 log
Supported
Releases
10.2.0E or later
seq permit tcp (IPv6)
Assigns a sequence number to allow TCP IPv6 packets while creating the filter.
Syntax
seq sequence-number permit tcp [A::B | A::B/x | any | host ipv6-address
[operator]] [A::B | A:B/x | any | host ipv6-address [operator]] [ack | fin
| psh | rst | syn | urg] [capture | count | dscp value | fragment | log]
Parameters
sequence-number Enter the sequence number to identify the route-map for editing and
sequencing number, from 1 to 16777214.
A::B Enter the IPv6 address in hexadecimal format separated by colons.
A::B/x Enter the number of bits that must match the IPv6 address.
any (Optional) Enter the keyword any to specify any source or destination IP address.
host ipv6-address (Optional) Enter the IPv6 address to use a host address only.
operator (Optional) Enter a logical operator to match the packets on the specified port number.
The following options are available:
eq Equal to
gt Greater than
lt Lesser than
1292 Access Control Lists