PurposeCommand or Action
Enters the global configuration mode.configure terminal
Example:
Switch# configure terminal
Step 2
Defines a standard IPv4 access list using a name, and enter
access-list configuration mode.
ip access-list standard name
Example:
Switch(config)# ip access-list standard 20
Step 3
The name can be a number from 1 to 99.
In access-list configuration mode, specify one or more
conditions denied or permitted to decide if the packet is
forwarded or dropped.
Use one of the following:
Step 4
•
deny {source [source-wildcard] | host source | any}
[log]
• host source—A source and source wildcard of
source 0.0.0.0.
•
permit {source [source-wildcard] | host source |
any} [log]
• any—A source and source wildcard of 0.0.0.0
255.255.255.255.
Example:
Switch(config-std-nacl)# deny 192.168.0.0
0.0.255.255 255.255.0.0 0.0.255.255
or
Switch(config-std-nacl)# permit 10.108.0.0
0.0.0.0 255.255.255.0 0.0.0.0
Returns to privileged EXEC mode.end
Example:
Switch(config-std-nacl)# end
Step 5
Verifies your entries.show running-config
Example:
Switch# show running-config
Step 6
(Optional) Saves your entries in the configuration file.copy running-config startup-config
Example:
Switch# copy running-config startup-config
Step 7
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
1189
How to Configure ACLs
To Next Page
Loading...
Need help?
General
