UMN:CLI User Manual
V5808
256
host A.B.C.D host A.B.C.D
no access-list {<100-199> |
<2000-2699>} {deny | permit} ip
any A.B.C.D A.B.C.D WILDCARD-
BITS
no access-list {<100-199> |
<2000-2699>} {deny | permit} ip
any any
no access-list {<100-199> |
<2000-2699>} {deny | permit} ip
any host A.B.C.D
no access-list {<100-199> |
<2000-2699>} remark LINE
Sample Configuration
This is an example of creating the extended ACL entries.
SWITCH(config)# access-list 100 permit ip 10.55.10.2 0.0.0.255 10.55.193.5
0.0.0.255
SWITCH(config)# access-list 100 deny ip 10.12.154.1 0.0.0.255 10.12.202.1
0.0.0.255
SWITCH(config)#
7.21.3 Named Access List
It defines an IP access list by name and any numeric characters that have not been
defined from both standard ACL and extended ACL.
To create a named IP access list entry, use the following command.
access-list WORD {deny |
permit} A.B.C.D/M [exact-match]
Specifies the named ACL entry with a prefix.
WORD: access list name
deny: denies packet if conditions are matched.
permit: permits packet if conditions are matched.
A.B.C.D/M: prefix to match
exact-match: exact match against the prefixes
access-list WORD {deny |
permit} any
Specifies the named ACL with any destination IP
address.
WORD: access list name
deny: denies packet if conditions are matched.
permit: permits packet if conditions are matched.
any: any destination IP address
access-list WORD remark LINE
Adds comments for the named ACL.
LINE: access list comments up to 100 characters
Add entries to the list by repeating the command for different IP addresses.
To Next Page
Loading...