The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
To specify a greater-than group member for an IP port object group, use the gt command. A greater-than group member matches port numbers that are greater than (and not equal to) the port number specified in the member. To remove a greater-than group member from the port-object group, use the no form of this command.
[sequence-number] gt port-number
no { sequence-number | gt port-number }
sequence-number |
(Optional) Sequence number for this group member. Sequence numbers maintain the order of group members within an object group. Valid sequence numbers are from 1 to 4294967295. If you do not specify a sequence number, the device assigns a number that is 10 greater than the largest sequence number in the current object group. |
port-number |
Port number that traffic matching this group member exceeds. The port-number argument can be a whole number between 0 and 65535. |
None
IP port object group configuration
Release |
Modification |
---|---|
4.0(1) |
This command was introduced. |
IP port object groups are not directional. Whether a gt command matches a source or destination port or whether it applies to inbound or outbound traffic depends upon how you use the object group in an ACL.
This command does not require a license.
This example shows how to configure an IP port object group named port-group-05 with a group member that matches traffic sent to or from port 49152 through port 65535:
switch# configure terminal switch(config)# object-group ip port port-group-05 switch(config-port-ogroup)# gt 49151
Command |
Description |
---|---|
eq |
Specifies an equal-to group member in an IP port object group. |
lt |
Specifies a less-than group member in an IP port object group. |
neq |
Specifies a not-equal-to group member in an IP port object group. |
object-group ip port |
Configures an IP port object group. |
range |
Specifies a port-range group member in an IP port object group. |
show object-group |
Displays object groups. |