port (user-defined application rule view)

Function

The port command specifies a port in a user-defined application rule.

The undo port command deletes the port in a user-defined application rule.

Format

port port

undo port { port | all }

Parameters

Parameter Description Value
port Specifies a port in a user-defined application rule. The value is an integer ranging from 1 to 65535.
all Deletes all port. -

Views

User-defined application rule view

Default Level

2: Configuration level

Usage Guidelines

You can specify a maximum of 4 ports in a user-defined application rule.

After you configure the IP address, the SA engine will use the transport layer protocol and ports, that is, the 3-tuple to match the network packets. After you configure the 3-tuple and commit the configuration, the SA engine uses the destination 3-tuple to match the first packet of a flow. Then, if no match is found, the SA engine uses the source 3-tuple to match the first packet of a flow. If you know the destination ( or source ) 3-tuple of the detecting flow, you can configure a user-defined 3-tuple to accelerate the application identification. For example, if you has a server, you can configure a 3-tuple rule according to the IP address, port, and protocol of the server, so the rule can identify all the accessing flow to this server. At least one IP address or one port should be in the 3-tuple rule.

Example

# Set the port in user-defined application rule rule1 to 80.

<sysname> system-view
[sysname] sa
[sysname-sa] user-defined-application name UD_abc
[sysname-sa-user-defined-app-UD_abc] rule name rule1
[sysname-sa-user-defined-app-UD_abc-rule-rule1] port 80
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.