C613-50631-01 Rev A Command Reference for IE340 Series 2005
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
IPV4 SOFTWARE ACCESS CONTROL LIST (ACL) COMMANDS
ACCESS
-LIST EXTENDED (NAMED)
access-list extended (named)
Overview This command configures an extended named access-list that permits or denies
packets from specific source and destination IP addresses. You can:
• use this command to enter a new or existing ACL name and enter the IPv4
Extended ACL Configuration mode. Once in that mode, you can create an
ACL filter entry. This approach lets you give the entry a sequence number.
• or, use this command to create an ACL and an ACL filter entry at the same
time. With this approach, you cannot give the entry a sequence number, so
the entry will go after any existing entries.
The no variant of this command removes a specified extended named access-list.
Syntax [to enter
the sub-mode]
access-list extended <list-name>
no access-list extended <list-name>
Syntax [icmp] access-list extended <list-name> {deny|permit} icmp <source>
<destination> [icmp-type <type-number>] [log]
no access-list extended <list-name> {deny|permit} icmp <source>
<destination> [icmp-type <type-number>] [log]
Parameter Description
<list-name> A user-defined name for the access-list
Table 39-2: Parameters in the access-list extended (named) command - icmp
Parameter Description
<list-name> A user-defined name for the access-list.
deny The access-list rejects packets that match the type, source, and
destination filtering specified with this command.
permit The access-list permits packets that match the type, source, and
destination filtering specified with this command.
icmp The access-list matches only ICMP packets.
icmp-type Matches only a specified type of ICMP messages. This is valid only
when the filtering is set to match ICMP packets.
To Next Page
Loading...
Need help?
General
