544 Configuring Access Control Lists
(continued)
•
portvalue
— The source layer 4 port match condition for
the ACL rule is specified by the port value parameter
(Range: 0–65535).
•
portkey
— Or you can specify the
portkey
, which can be
one of the following keywords: domain, echo, ftp, ftpdata,
http, smtp, snmp, telnet, tftp, and www.
•
log
— Specifies that this rule is to be logged.
•
time-range-name
— Specifies the named time range to
associate with the ACL rule.
•
assign-queue
queue-id
— Specifies the particular
hardware queue for handling traffic that matches the
rule. (Range: 0-6)
•
mirror
interface
— Allows the traffic matching this rule
to be copied to the specified interface.
•
redirect
interface
— This parameter allows the traffic
matching this rule to be forwarded to the specified
interface.
interface
interface
(Optional) Enter interface configuration mode for the
specified interface. The
interface
variable includes the
interface type and number, for example gigabitethernet
1/0/3.
You can also specify a range of interfaces with the interface
range command, for example, interface range
gigabitethernet 1/0/8-12 configures interfaces 8, 9, 10, 11,
and 12.
ip access-group
name
direction seqnum
Bind the specified ACL to an interface.
NOTE: To apply this ACL to all interfaces, issue the command
in Global Configuration mode.
•
name
— Access list name. (Range: Valid IP access-list
name up to 31 characters in length)
•
direction
— Direction of the ACL. (Range: In or out.
Default is
in
.)
•
seqnum
— Precedence for this interface and direction. A
lower sequence number has higher precedence. Range: 1
– 4294967295. Default is1.
Command Purpose
To Next Page
Loading...
