Cisco Sx350

To Next Page

To Previous Page

ACL Commands

59 Cisco Sx350 Ph. 2.2.5 Devices - Command Line Interface Reference Guide

Example

This example defines an ACL by the name of server and enters a rule (ACE) for tcp

packets.

switchxxxxxx(config)# ipv6 access-list

server

switchxxxxxx(config-ipv6-al)# permit

tcp

3001::2/64

any

2.6 deny ( IPv6 )

Use the deny command in Ipv6 Access-list Configuration mode to set permit

conditions (ACEs) for IPv6 ACLs. Use the no form of the command to remove the

access control entry.

Syntax

deny

protocol

{any | {

source-prefix

length

}{any |

destination-prefix

length

}

[ace-priority

priority]

[dscp

number

| precedence

number

]

[time-range

time-range-name

]

[disable-port

log-input]

deny icmp {any | {

source-prefix

length

}{any |

destination-prefix

length

}

{any|

icmp-type

} {any|

icmp-code

}

[ace-priority

priority

][dscp

number

| precedence

number

]

[time-range

time-range-name

]

[disable-port

|log-input]

deny tcp {any | {

source-prefix

length

} {any |

source-port

port-range

}}{any |

destination-prefix

length

} {any|

destination-port

port-range

}

[ace-priority

priority

][dscp

number

| precedence

number

] [match-all

list-of-flags

]

[time-range

time-range-name

]

[disable-port |log-input]

deny udp {any | {

source-prefix

length

}} {any |

source-port

port-range

}}{any |

destination-prefix

length

} {any|

destination-port

port-range

}

[

ace-priority

priority]

[dscp

number

| precedence

number

]

[time-range

time-range-name

]

[disable-port

|log-input]

no deny

protocol

{any | {

source-prefix

length

}{any |

destination-prefix

length

} [dscp

number

| precedence

number

]

[time-range

time-range-name

]

[disable-port

|log-input]

no deny icmp {any | {

source-prefix

length

}{any |

destination-prefix

length

}

{any|

icmp-type

} {any|

icmp-code

} [dscp

number

| precedence

number

]

[time-range

time-range-name

]

[disable-port

|log-input]

no deny tcp {any | {

source-prefix

length

} {any |

source-port

port-range

}}{any |

destination-prefix

length

} {any|

destination-port

port-range

} [dscp

number

Main Page

Table of Contents

Related product manuals