C
HAPTER
26
| Access Control Lists
IPv4 ACLs
– 684 –
access-list ip This command adds an IP access list and enters configuration mode for
standard or extended IPv4 ACLs. Use the no form to remove the specified
ACL.
SYNTAX
[no] access-list ip {standard | extended} acl-name
standard – Specifies an ACL that filters packets based on the
source IP address.
extended – Specifies an ACL that filters packets based on the
source or destination IP address, and other more specific criteria.
acl-name – Name of the ACL. (Maximum length: 16 characters, no
spaces or other special characters)
DEFAULT SETTING
None
COMMAND MODE
Global Configuration
COMMAND USAGE
â—† When you create a new ACL or enter configuration mode for an existing
ACL, use the permit or deny command to add new rules to the bottom
of the list.
â—† To remove a rule, use the no permit or no deny command followed by
the exact text of a previously configured rule.
â—† An ACL can contain up to 128 rules.
EXAMPLE
Console(config)#access-list ip standard david
Console(config-std-acl)#
RELATED COMMANDS
permit, deny (685)
ip access-group (688)
show ip access-list (689)
To Next Page
Loading...
Need help?
General