P Commands
permit (role-based access control list)
To configure a permit action in a security group access control list (SGACL), use the permit command. To
remove the action, use the no form of this command.
permit {all| icmp| igmp| ip| {tcp| udp} [{src| dst} {eq| gt| lt| neq} port-number| range port-number1
port-number2]} [log]
nopermit {all| icmp| igmp| ip| {tcp| udp} [{src| dst} {eq| gt| lt| neq} port-number| range port-number1
port-number2]} [log]
Syntax Description
all
icmp
igmp
ip
tcp
udp
src
dst
eq
gt
lt
neq
port-number
range
port-number1
port-number2
log
permit (role-based access control list)
Specifies all traffic.
Specifies Internet Control Message Protocol (ICMP)
traffic.
Specifies Internet Group Management Protocol
(IGMP) traffic.
Specifies IP traffic.
Specifies TCP traffic.
Specifies User Datagram Protocol (UDP) traffic.
Specifies the source port number.
Specifies the destination port number
Specifies equal to the port number.
Specifies greater than the port number.
Specifies less than the port number.
Specifies not equal to the port number.
Port number for TCP or UDP. The range is from 0 to
65535.
Specifies a port range for TCP or UDP.
First port in the range. The range is from 0 to 65535.
Last port in the range. The range is from 0 to 65535.
(Optional) Specifies that packets matching this
configuration be logged.
Cisco Nexus 7000 Series Security Command Reference
575