ip access-list extended
Except on the first page, right running head:
Heading1 or Heading1NewPage text (automatic)
427
Alcatel-Lucent
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Command Reference Guide
Example:
ALU(config-ext-nacl)# permit ip 24.0.0.0/8 25.0.0.0/8
ALU(config-ext-nacl)# deny ip any 13.0.0.0/8
any Match any source or destination IP address.
host <host-ip-
address>
Specify host IP address.
<source-ip-
address/prefix-
length>|<source-
ip-address
subnet-mask>
Source IP address network.
operators This is specific to UDP and TCP protocol.
Compares TCP/UDP ports of the source/destination ports.
When used after the source IP address/source-mask,
specifies a source port.
When used after the destination IP address/destination
mask, specifies a destination port.
<destination-ip-
address/prefix-
length>|<destina
tion-ip-address
subnet-mask>
Destination IP address network.
log By default, log the message.
log-input If access list is matched, log the message.
enable fragment Enable access list matching for fragmented packets.
precedence [<0-
7>|<keywords>]
Match access list if specified precedence matches packet.
tos [<0-
15>|<keywords>
Match access list if specified ToS matches packet.
Parameter Description
To Next Page
Loading...
Need help?
General
