Management ACL Commands 959
63
Management ACL Commands
This chapter explains the following commands:
• deny (management)
• management access-class
• management access-list
• permit (management)
• show management access-class
• show management access-list
deny (management)
Use the deny command in Management Access-List Configuration mode to set conditions for
the management access list.
Syntax
deny [ethernet
interface-number
| vlan
vlan-id
| port-channel
number
] [service
service
]
[priority
priority
]
deny ip-source
ip-address
[mask
mask
|
prefix-length
] [ethernet
interface-number
| vlan
vlan-
id
| port-channel
number
] [service
service
] [priority
priority
]
•
ethernet
interface-number
— A valid Ethernet-routed port number.
•
vlan
vlan-id
— A valid VLAN number.
•
port-channel
number
— A valid routed port-channel number.
•
ip-address
— Source IP address.
•
mask
mask
— Specifies the network mask of the source IP address.
•
mask
prefix-length
— Specifies the number of bits that comprise the source IP address prefix.
The prefix length must be preceded by a forward slash (/). (Range: 0–32)
•
service
service
— Indicates service type. Can be one of the following: telnet, ssh, http, https,
tftp, snmp, or sntp.
•
priority
priority
— Priority for the rule. (Range: 1–64)
To Next Page
Loading...
