Navigation
Table of Contents
Guide That Contains This Content
[+] Expand All
[-] Collapse All
Configuring Protocol Conditions with Ports for PTSP Classify-Traffic Conditions (SRC CLI)
Use the following configuration statements to add general protocol conditions with ports to a PTSP classify-traffic condition:
policies group name list name rule name traffic-condition name protocol-port-condition {protocol protocol; }
policies group name list name rule name traffic-condition name protocol-port-condition destination-port port {from-port from-port; }
policies group name list name rule name traffic-condition name protocol-port-condition source-port port {from-port from-port; }
To add general protocol conditions with ports to a PTSP classify-traffic condition:
- From configuration mode, enter the protocol port condition
configuration. For example: user@host# edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition
- Configure the protocol matched by this classify-traffic
condition.[edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition]user@host# set protocol protocol
UDP is the only valid value for PTSP.
- (Optional) Enter the destination port configuration for
the protocol port configuration. [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition]user@host# edit destination-port
- (Optional) Configure the destination port. [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition destination-port port]user@host# set from-port from-port
Where from-port is one of the following values:
- service_port—A predefined global parameter that is the port of the service as specified by the service object
- Integer in the range 0–65535
- Expression—A range of port numbers; for example, 10..20
- Parameter of type port
Use a range of ports to specify port numbers that are greater than or less than a specified port number. For example:
- To set a range of ports that is greater than 10, use 11..65535.
- To set a range of ports that is less than 200, use 0..199.
- (Optional) Enter the source port configuration for the
protocol port configuration. user@host# up [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition]user@host# edit source-port
- (Optional) Configure the source port. [edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition source-port port]user@host# set from-port from-port[edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition source-port port]user@host# up
Where from-port is one of the following values:
- service_port—A predefined global parameter that is the port of the service as specified by the service object.
- Integer in the range 0–65535
- Expression—A range of port numbers; for example, 10..20.
- Parameter of type port
Use a range of ports to specify port numbers that are greater than or less than a specified port number. For example:
- To set a range of ports that is greater than 10, use 11..65535.
- To set a range of ports that is less than 200, use 0..199.
- (Optional) Verify your protocol condition configuration.
[edit policies group group1 list list1 rule rule1 traffic-condition condition1 protocol-port-condition] user@host# show protocol udp; destination-port { port { from-port service_port; } } source-port { port { from-port service_port; } }
