Send documentation comments to mdsfeedback-doc@cisco.com
11-39
Cisco MDS 9000 Family Command Reference
OL-8413-07, Cisco MDS SAN-OS Release 3.x
Chapter 11 I Commands
ip access-group
The following example creates an access group called aclDenyTcp (if it does not already exist) for
ingress traffic.
switch# config terminal
Enter configuration commands, one per line. End with CNTL/Z.
switch(config)# ip access-list aclDenyTcp deny tcp any any
switch(config)# interface gigabitethernet 3/1
switch(config-if)# ip access-group aclDenyTcp in
The following example deletes the access group called aclDenyTcp for ingress traffic.
switch(config-if)# no ip access-group aclDenyTcp in
The following example creates an access list called aclPermitUdp (if it does not already exist) for local
egress traffic.
switch# config terminal
Enter configuration commands, one per line. End with CNTL/Z.
switch(config)# ip access-list aclPermitUdp permit udp 192.168.32.0 0.0.7.255 any
switch(config)# interface gigabitethernet 3/1
switch(config-if)# ip access-group aclPermitUdp out
The following example removes the access list called aclPermitUdp for local egress traffic.
switch(config-if)# no ip access-group aclPermitUdp out
Related Commands Command Description
ip access-list Configures IP access control lists.
show ip access-list Displays the IP-ACL configuration information.
To Next Page
Loading...
