Extended ACLs – TCP Relational Operators
The access list TCP protocol option supports both source and destination ports. You can access each by using either the port number or a mnemonic or acronym. Keyword relational operators such as those shown in the following code output precede these:
Lab-X(config)#access-list 101 deny tcp any ?
A.B.C.D Destination address.
any Any destination host.
eq Match only packets on a given port number.
gt Match only packets with a greater port number.
host A single destination host.
lt Match only packets with a lower port number.
neq Match only packets not on a given port number.
range Match only packets in the range of port numbers.