Command
Modes
EXEC Privilege
Command
History
Version 9.4.
(0.0)
Added support for VRF.
Version 8.5.1.0 Added support for the 4-port 40G line cards on ExaScale.
Version
8.3.19.0
Introduced on the S4820T.
Version 8.3.11.1 Introduced on the Z9000.
Version 8.3.7.0 Introduced on the S4810.
Example
Dell#show ip access-lists L3-ACL vrf VRF2 in
Standard Ingress IP access list L3-ACL on VRF2
seq 5 permit 10.1.2.0/24
seq 10 permit 20.1.2.0/24
Dell#show ip access-lists vrf VRF2 in
Standard Ingress IP access list L3-ACL
seq 5 permit 10.1.2.0/24
seq 10 permit 20.1.2.0/24
Standard IP ACL Commands
When you create an ACL without any rule and then apply it to an interface, the ACL behavior reflects an
implicit permit.
The S4810 supports both Ingress and Egress IP ACLs.
NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands
sections.
deny
To drop packets with a certain IP address, configure a filter.
S4810
Syntax
deny {source | any | host {ip-address}}
To remove this filter, you have two choices:
• Use the no seq sequence-number command if you know the filter’s
sequence number.
• Use the no deny {source [mask] | any | host ip-address}
command.
Parameters
source Enter the IP address in dotted decimal format of the network
from which the packet was sent.
214
Access Control Lists (ACL)
To Next Page
Loading...
