Name: Cisco Catalyst 2950
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

28-20

Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide

78-11380-12

Chapter 28 Configuring Network Security with ACLs

Displaying ACL Information

Applying ACLs to a Physical Interface

Beginning in privileged EXEC mode, follow these steps to control access to a Layer 2 interface:

This example shows how to apply access list 2 on an interface to filter packets entering the interface:

Switch(config)# interface gigabitethernet0/2

Router(config-if)# ip access-group 2 in

Note The ip access-group interface configuration command is only valid when applied to a management

interface or a Layer 2 physical interface. ACLs cannot be applied to interface port-channels.

For inbound ACLs, after receiving a packet, the switch checks the packet against the ACL. If the ACL

permits the packet, the switch continues to process the packet. If the ACL rejects the packet, the switch

discards the packet.

When you apply an undefined ACL to an interface, the switch acts as if the ACL has not been applied to

the interface and permits all packets. Remember this behavior if you use undefined ACLs for network

security.

Displaying ACL Information

You can display the ACLs that are configured on the switch, and you can display the ACLs that have

been applied to physical and management interfaces. This section consists of these topics:

• Displaying ACLs, page 28-20

• Displaying Access Groups, page 28-22

Displaying ACLs

You can display existing ACLs by using show commands.

Command Purpose

Step 1

configure terminal Enter global configuration mode.

Step 2

interface interface-id Identify a specific interface for configuration and enter interface

configuration mode.

The interface must be a Layer 2 or management interface or a management

interface VLAN ID.

Step 3

ip access-group {access-list-number |

name} {in}

Control access to the specified interface.

Step 4

end Return to privileged EXEC mode.

Step 5

show running-config Display the access list configuration.

Step 6

copy running-config startup-config (Optional) Save your entries in the configuration file.

Other manuals for Cisco Catalyst 2950

Getting Started Guide28 pages

Command Reference686 pages

Datasheet19 pages

Hardware Installation Guide232 pages

Software Guide376 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 2950 and is the answer not in the manual?

Cisco Catalyst 2950 Specifications

General

Forwarding Bandwidth	8.8 Gbps
Switching Capacity	13.6 Gbps
Forwarding Rate	6.6 Mpps
Weight	3.6 kg
RAM	16 MB
Flash Memory	8 MB
Operating Humidity	10% to 85% non-condensing
Uplink Ports	2 x 10/100/1000Base-T
Dimensions	4.4 cm x 44.5 cm x 24.2 cm
Remote Management Protocol	SNMP, Telnet, HTTP
Features	Quality of Service (QoS), VLAN support
Compliant Standards	IEEE 802.3, IEEE 802.3u, IEEE 802.1D, IEEE 802.1Q, IEEE 802.1p
Status Indicators	system
Operating Temperature	0 to 45°C
Ports	24 x 10/100 Ethernet ports
MAC Address Table Size	8, 192 entries
Power Supply	Internal 100-240V AC, 50-60Hz