Chapter 67: Access Control Lists (ACLs)
1034 Section X: Network Management
Displaying the ACLs
It takes two commands to display the ACLs on the switch. One command
displays the ACL configurations and another displays the ACL port
assignments. The first command is the SHOW ACCESS-LIST command.
Enter this command in the Privileged Exec mode. It doesn’t have any
parameters. Here is an example of what you will see.
Figure 168. SHOW ACCESS-LIST Command
As you can see from the example, the SHOW ACCESS-LIST command
doesn’t tell you which, if any, ports the ACLs are assigned to. For that you
have to use the SHOW INTERFACE ACCESS-GROUP command, also
found in the Privileged Exec mode. Here is the format of the command:
show interface
port
access-group
This example of the command displays the ACLs assigned to ports 1 to 5:
awplus# show interface port1.0.1-port1.0.5 access-
group
Here’s an example of the information.
Figure 169. SHOW INTERFACE ACCESS-GROUP Command
IP access-list 3002
deny any any
IP access-list 3010
permit 149.11.125.0 mask 255.255.255.0 149.11.120.0 mask 255.255.255.0
UDP access-list 3025
deny any range 12 100 149.123.159.0 mask 255.255.255.0 eq 2 vlan 7
UDP access-list 3026
deny any any range 67 87 vlan 2
Total number of access-list = 4
Interface port1.0.1
access-group 3010
access-group 3002
Interface port1.0.2
access-group 3025
To Next Page
Loading...
