Edge-Core ES3528-WDM

Edge-Core ES3528-WDM

556 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

IP ACLs

23-9

23

This shows how to create an extended ACL with an egress mask to drop packets

leaving network 171.69.198.0 when the Layer 4 source port is 23.

Console(config)#access-list ip extended A3

Console(config-ext-acl)#deny host 171.69.198.5 any

Console(config-ext-acl)#deny 171.69.198.0 255.255.255.0 any source-port 23

Console(config-ext-acl)#end

Console#show access-list

IP extended access-list A3:

deny host 171.69.198.5 any

deny 171.69.198.0 255.255.255.0 any source-port 23

Console#config

Console(config)#access-list ip mask-precedence out

Console(config-ip-mask-acl)#mask 255.255.255.0 any source-port

Console(config-ip-mask-acl)#exit

Console(config)#interface ethernet 1/15

Console(config-if)#ip access-group A3 out

Console(config-if)#end

Console#show access-list

IP extended access-list A3:

deny 171.69.198.0 255.255.255.0 any source-port 23

deny host 171.69.198.5 any

IP egress mask ACL:

mask 255.255.255.0 any source-port

Console#

Table of Contents

Related product manuals

Preview: Edge-Core ES3528M

Edge-Core ES3528M

Preview: Edge-Core ES3510MA

Edge-Core ES3510MA

Preview: Edge-Core ES4626F

Edge-Core ES4626F

Preview: Edge-Core ES4524D

Edge-Core ES4524D

Preview: Edge-Core ES4308-POE

Edge-Core ES4308-POE

Edge-Core ECS4100-12T

Edge-Core ECS2100-28P

Preview: Edge-Core ECS4310-26T

Edge-Core ECS4310-26T

Preview: Edge-Core ECS4310-18T

Edge-Core ECS4310-18T

Edge-Core ECS2100-28PP

Preview: Edge-Core ECS4100 Series

Edge-Core ECS4100 Series

Preview: Edge-Core ECS2020 Series

Edge-Core ECS2020 Series