学员提问:
R1(config)#access-list 101 permit ?
<0-255> An IP protocol number
ahp Authentication Header Protocol
eigrp Cisco's EIGRP routing protocol
esp Encapsulation Security Payload
gre Cisco's GRE tunneling
icmp Internet Control Message Protocol
igmp Internet Gateway Message Protocol
ip Any Internet Protocol
ipinip IP in IP tunneling
nos KA9Q NOS compatible IP over IP tunneling
ospf OSPF routing protocol
pcp Payload Compression Protocol
pim Protocol Independent Multicast
tcp Transmission Control Protocol
udp User Datagram Protocol
R1(config)#access-list 101 permit ip ?
A.B.C.D Source address
any Any source host
host A single source host
R1(config)#access-list 101 permit
R1(config)#access-list 101 permit ?
<0-255> An IP protocol number
ahp Authentication Header Protocol
eigrp Cisco's EIGRP routing protocol
esp Encapsulation Security Payload
gre Cisco's GRE tunneling
icmp Internet Control Message Protocol
igmp Internet Gateway Message Protocol
ip Any Internet Protocol
ipinip IP in IP tunneling
nos KA9Q NOS compatible IP over IP tunneling
ospf OSPF routing protocol
pcp Payload Compression Protocol
pim Protocol Independent Multicast
tcp Transmission Control Protocol
udp User Datagram Protocol
R1(config)#access-list 101 permit u
R1(config)#access-list 101 permit udp ?
A.B.C.D Source address
any Any source host
host A single source host
R1(config)#access-list 101 permit udp 10.40.57.212 ?
A.B.C.D Source wildcard bits
R1(config)#access-list 101 permit udp 10.40.57.212 255.255.252.0 ?
A.B.C.D Destination address
any Any destination host
eq Match only packets on a given port number
gt Match only packets with a greater port number
host A single destination host
lt Match only packets with a lower port number
neq Match only packets not on a given port number
range Match only packets in the range of port numbers
R1(config)#access-list 101 permit udp 10.40.57.212 255.255.252.0
能根据端口号来分类吗?
<0-255> An IP protocol number
ahp Authentication Header Protocol
eigrp Cisco's EIGRP routing protocol
esp Encapsulation Security Payload
gre Cisco's GRE tunneling
icmp Internet Control Message Protocol
igmp Internet Gateway Message Protocol
ip Any Internet Protocol
ipinip IP in IP tunneling
nos KA9Q NOS compatible IP over IP tunneling
ospf OSPF routing protocol
pcp Payload Compression Protocol
pim Protocol Independent Multicast
tcp Transmission Control Protocol
udp User Datagram Protocol
R1(config)#access-list 101 permit ip ?
A.B.C.D Source address
any Any source host
host A single source host
R1(config)#access-list 101 permit
R1(config)#access-list 101 permit ?
<0-255> An IP protocol number
ahp Authentication Header Protocol
eigrp Cisco's EIGRP routing protocol
esp Encapsulation Security Payload
gre Cisco's GRE tunneling
icmp Internet Control Message Protocol
igmp Internet Gateway Message Protocol
ip Any Internet Protocol
ipinip IP in IP tunneling
nos KA9Q NOS compatible IP over IP tunneling
ospf OSPF routing protocol
pcp Payload Compression Protocol
pim Protocol Independent Multicast
tcp Transmission Control Protocol
udp User Datagram Protocol
R1(config)#access-list 101 permit u
R1(config)#access-list 101 permit udp ?
A.B.C.D Source address
any Any source host
host A single source host
R1(config)#access-list 101 permit udp 10.40.57.212 ?
A.B.C.D Source wildcard bits
R1(config)#access-list 101 permit udp 10.40.57.212 255.255.252.0 ?
A.B.C.D Destination address
any Any destination host
eq Match only packets on a given port number
gt Match only packets with a greater port number
host A single destination host
lt Match only packets with a lower port number
neq Match only packets not on a given port number
range Match only packets in the range of port numbers
R1(config)#access-list 101 permit udp 10.40.57.212 255.255.252.0
能根据端口号来分类吗?
捷盈讲师及学员解答:
源IP 后面根源端口 目的IP根目的端口
access-list 100 permit tcp any eq 80 any eq 1055
源IP 源端口 目的IP 目的端口
access-list 100 permit tcp any eq 80 any eq 1055
源IP 源端口 目的IP 目的端口