C613-50055-01 REV A Command Reference for x230 Series Edge Switches 717
AlliedWare Plus™ Operating System - Version 5.4.5-0.x
IPV4 SOFTWARE ACCESS CONTROL LIST (ACL) COMMANDS
ACCESS
-LIST EXTENDED (NAMED)
method moves you to the IPv4 Extended ACL Configuration mode for the selected
access-list number, and from here you can configure your access-lists by using the
commands (access-list extended ICMP filter), (access-list extended IP filter), and
(access-list extended IP protocol filter).
The table IPv4 Software Access List Commands and Prompts on page 709 shows
the prompts at which ACL commands are entered.
Note that packets must match both the source and the destination details.
NOTE: Software ACLs will deny access unless explicitly permitted by an ACL action.
Examples You can enter the extended named ACL in the Global Configuration mode
together with the ACL filter entry on the same line, as shown below:
awplus# configure terminal
awplus(config)# access-list extended TK deny tcp 2.2.2.3/24 eq
14 3.3.3.4/24 eq 12 log
Alternatively, you can enter the extended named ACL in Global Configuration
mode before specifying the ACL filter entry in the IPv4 Extended ACL
Configuration mode, as shown below:
awplus# configure terminal
awplus(config)# access-list extended TK
awplus(config-ip-ext-acl)# deny tcp 2.2.2.3/24 eq 14 3.3.3.4/24
eq 12 log
To Next Page
Loading...
