Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Configuring Protocol Conditions with Ports for PTSP Classify-Traffic Conditions (SRC CLI)

    Use the following configuration statements to add general protocol conditions with ports to a PTSP classify-traffic condition:

    policies group name list name rule name traffic-condition name protocol-port-condition {protocol protocol; }
    policies group name list name rule name traffic-condition name protocol-port-condition destination-port port {from-port from-port; }
    policies group name list name rule name traffic-condition name protocol-port-condition source-port port {from-port from-port; }

    To add general protocol conditions with ports to a PTSP classify-traffic condition:

    1. From configuration mode, enter the protocol port condition configuration. For example:
      user@host# edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition
    2. Configure the protocol matched by this classify-traffic condition.
      [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition]user@host# set protocol protocol

      UDP is the only valid value for PTSP.

    3. (Optional) Enter the destination port configuration for the protocol port configuration.
      [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition]user@host# edit destination-port
    4. (Optional) Configure the destination port.
      [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition destination-port port]user@host# set from-port from-port

      Where from-port is one of the following values:

      • service_port—A predefined global parameter that is the port of the service as specified by the service object
      • Integer in the range 0–65535
      • Expression—A range of port numbers; for example, 10..20
      • Parameter of type port

      Use a range of ports to specify port numbers that are greater than or less than a specified port number. For example:

      • To set a range of ports that is greater than 10, use 11..65535.
      • To set a range of ports that is less than 200, use 0..199.
    5. (Optional) Enter the source port configuration for the protocol port configuration.
      user@host# up [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition]user@host# edit source-port
    6. (Optional) Configure the source port.
      [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition source-port port]user@host# set from-port from-port[edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition source-port port]user@host# up

      Where from-port is one of the following values:

      • service_port—A predefined global parameter that is the port of the service as specified by the service object.
      • Integer in the range 0–65535
      • Expression—A range of port numbers; for example, 10..20.
      • Parameter of type port

      Use a range of ports to specify port numbers that are greater than or less than a specified port number. For example:

      • To set a range of ports that is greater than 10, use 11..65535.
      • To set a range of ports that is less than 200, use 0..199.
    7. (Optional) Verify your protocol condition configuration.
      [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition]
      user@host# show 
      protocol udp;
      destination-port { 
       port { 
              from-port service_port;
        }
      }
      source-port {
        port {
             from-port service_port;
        }
      }

    Modified: 2016-12-29