seqno
|
(Optional) Sequence number
|
no
|
Negate a command or set its defaults
|
permitdeny
|
Permit/deny
|
ethertype
|
Configure match based on ethertype
|
vlan
|
(Optional) Configure match based on vlan
|
ingress_intf
|
(Optional) Configure match based on ingress interface
|
vlan_priority
|
(Optional) Configure match based on priority
|
ethertypeid
|
Configure the ethertype value
|
vlanid
|
(Optional) VLAN number
|
intfid
|
(Optional) Interface index
|
intfname
|
(Optional) Interface name
|
vlanpriorityid
|
(Optional) Vlan Priority
|
proto_tcp
|
Protocol
|
src_any
|
Any
|
src_addr
|
Source network address
|
src_wild
|
Source wildcard bits
|
src_prefix
|
Source network prefix
|
src_key_host
|
A single source host
|
src_host
|
Source address
|
src_key_addrgrp
|
Source address group
|
src_addrgrp_name
|
Address group name
|
src_port_op
|
(Optional) Port operator
|
src_port_range
|
(Optional) Port range
|
src_port0
|
(Optional) Port number
|
src_port0_str
|
(Optional) TCP port
|
src_port1
|
(Optional) Port number
|
src_port1_str
|
(Optional) TCP port
|
src_port2
|
(Optional) Port number
|
src_port2_str
|
(Optional) TCP port
|
src_portgroup
|
(Optional) src port group
|
src_port_group
|
(Optional) Port group name
|
dst_any
|
Any
|
dst_addr
|
Destination network address
|
dst_wild
|
Destination wildcard bits
|
dst_prefix
|
Destination network prefix
|
dst_key_host
|
A single destination host
|
dst_host
|
Destination address
|
dst_key_addrgrp
|
Destination address group
|
dst_addrgrp_name
|
Address group name
|
dst_port_op
|
(Optional) Port operator
|
dst_port_range
|
(Optional) Port range
|
dst_port0
|
(Optional) Port number
|
dst_port0_str
|
(Optional) TCP port
|
dst_port1
|
(Optional) Port number
|
dst_port1_str
|
(Optional) TCP port
|
dst_port2
|
(Optional) Port number
|
dst_port2_str
|
(Optional) TCP port
|
dst_portgroup
|
(Optional) dst port group
|
dst_port_group
|
(Optional) Port group name
|
dscp
|
(Optional) Match packets with given dscp value
|
dscp_num
|
(Optional) Differentiated services codepoint value
|
dscp_str
|
(Optional) Differentiated services codepoint label
|
tos
|
(Optional) Match packets with given TOS value
|
tos_num
|
(Optional) Type of service value
|
tos_str
|
(Optional) Type of service label
|
precedence
|
(Optional) Match packets with given precedence value
|
prec_num
|
(Optional) Precedence value
|
prec_str
|
(Optional) Precedence label
|
fragments
|
(Optional) Check non-initial fragments
|
log
|
(Optional) Log matches against this entry
|
time-range
|
(Optional) Specify a time range
|
time_range_name
|
(Optional) Time range name
|
packet-length
|
(Optional) Match packets based on layer 3 packet length
|
plen_op
|
(Optional) Packet-length operator
|
plen_range
|
(Optional) Packet-length range
|
plen0
|
(Optional) Packet length
|
plen1
|
(Optional) Lower packet length
|
plen2
|
(Optional) Higher packet length
|
ttl
|
(Optional) Match Packets with a given TTL value
|
ttl_num
|
(Optional)
|
tcp-option-length
|
(Optional) Specify TCP Options size
|
tcp_opt_len
|
(Optional) TCP option length (multiples of 4 bytes)
|
tcp-flags-mask
|
(Optional) Specify TCP Flags
|
tcp_flags_mask
|
(Optional) TCP flags mask
|
http-method
|
(Optional) Match packets based on http-method
|
opt_num
|
(Optional) http_option value
|
opt_str
|
(Optional) http_option_param
|
packet-length
|
(Optional) Match packets based on layer 3 packet length
|
plen_op
|
(Optional) Packet-length operator
|
plen_range
|
(Optional) Packet-length range
|
plen0
|
(Optional) Packet length
|
plen1
|
(Optional) Lower packet length
|
plen2
|
(Optional) Higher packet length
|
urg
|
(Optional) Match on the URG bit
|
ack
|
(Optional) Match on the ACK bit
|
psh
|
(Optional) Match on the PSH bit
|
rst
|
(Optional) Match on the RST bit
|
syn
|
(Optional) Match on the SYN bit
|
fin
|
(Optional) Match on the FIN bit
|
established
|
(Optional) Match established connections
|
udf
|
(Optional) User defined field match
|
udf_name
|
(Optional) UDF name
|
udf_val
|
(Optional) UDF value to match
|
udf_mask
|
(Optional) Mask to apply to UDF value
|
capture
|
(Optional) Enable packet capture on this filter for session
|
session
|
(Optional) Session ID <1-48> for this session
|
session-id
|
(Optional) Session ID <1-48> for this session
|
action
|
(Optional) Action
|
actionid
|
(Optional) redirect: Ethernet1/1,port-channel1 set-erspan-dscp: <1-63> set-erspan-gre-proto: <1-65535>
|