15-3
Cisco ONS 15454 SONET/SDH ML-Series Multilayer Ethernet Card Software Feature and Configuration Guide, R4.0
78-15224-02
Chapter 15 Configuring Access Control Lists
ML-Series ACL Support
Creating IP ACLs
The following sections describe how to create numbered standard, extended, and named standard IP
ACLs:
• Creating Numbered Standard and Extended IP ACLs, page 15-3
• Creating Named Standard IP ACLs, page 15-4
• Creating Named Extended IP ACLs (Control Plane Only), page 15-4
• Applying the ACL to an Interface, page 15-4
Creating Numbered Standard and Extended IP ACLs
Table 15-1 list the global configuration commands used to create numbered standard and extended IP
ACLs.
Table 15-1 Commands for Numbered Standard and Extended IP ACLs
Command Purpose
Router(config)# access-list
access-list-number
{deny | permit}
source
[
source-wildcard
]
Defines a standard IP ACL using a source address
and wildcard.
Router(config)# access-list
access-list-number {deny | permit}
any
Defines a standard IP ACL using an abbreviation
for the source and source mask of 0.0.0.0
255.255.255.255.
Router(config)# access-list
access-list-number
{deny | permit}
protocol
source source-wildcard destination
destination-wildcard
[precedence
precedence
] [tos
tos
]
Defines an extended IP ACL number and the
access conditions.
Router(config)# access-list
access-list-number
{deny | permit}
protocol
any any
Defines an extended IP ACL using an
abbreviation for a source and source wildcard of
0.0.0.0 255.255.255.255, and an abbreviation for
a destination and destination wildcard of 0.0.0.0
255.255.255.255.
Router(config)# access-list
access-list-number
{deny | permit}
protocol
host
source
host
destination
Defines an extended IP ACL using an
abbreviation for a source and source wildcard of
source 0.0.0.0, and an abbreviation for a
destination and destination wildcard of
destination 0.0.0.0.
To Next Page
Loading...
