SUMMARY STEPS
1.
configure terminal
2.
access-list access-list-number {deny | permit} source [source-wildcard]
3.
end
4.
show access-lists
5.
copy running-config startup-config
DETAILED STEPS
PurposeCommand or Action
Enters global configuration mode.configure terminal
Example:
Switch# configure terminal
Step 1
Creates an IP standard ACL, repeating the command as many times as
necessary.
access-list access-list-number {deny |
permit} source [source-wildcard]
Step 2
Example:
Switch(config)# access-list 1
•
For access-list-number, enter the access list number. The range is 1
to 99 and 1300 to 1999.
•
Use the permit keyword to permit a certain type of traffic if the
conditions are matched. Use the deny keyword to deny a certain type
of traffic if conditions are matched.
permit 192.2.255.0 1.1.1.255
•
For source, enter the network or host from which the packet is being
sent. You can use the any keyword as an abbreviation for 0.0.0.0
255.255.255.255.
•
(Optional) For source-wildcard, enter the wildcard bits in dotted
decimal notation to be applied to the source. Place ones in the bit
positions that you want to ignore.
When you create an access list, remember that by default the end of the
access list contains an implicit deny statement for everything if it did not
find a match before reaching the end.
To delete an access list, use the no access-list access-list-number
global configuration command.
Note
Returns to privileged EXEC mode.end
Example:
Switch(config)# end
Step 3
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
585
How to Configure QoS
To Next Page
Loading...
Need help?
General
