MES1000, MES2000 Ethernet Switches 197
Privileged EXEC Mode Commands
Command line in the Privileged EXEC mode appears as follows:
console#
Table 5.240—ACL display commands
show access-lists
[access-list]
Displays ACLs created on a switch.
show access-lists
time-range-active
[access-list]
Displays currently active ACLs created on a switch.
show interfaces access-lists
[gigabitethernet gi_port |
fastethernet fa_port | port-
channel group|
vlan vlan_id]
gi_port: (1..3/0/1..28);
fa_port: (1..3/0/1..24);
vlan_id: (1..4094);
group: (1..8)
Displays ACLs assigned to interfaces.
clear access-lists counters
[gigabitethernet gi_port |
fastethernet fa_port | port-
channel group]
gi_port: (1..3/0/1..28);
fa_port: (1..3/0/1..24);
group: (1..8)
Resets all ACL counters or ACL counters for the specified
interface.
show interfaces access-lists
counters
[gigabitethernet gi_port |
fastethernet fa_port | port-
channel group]
gi_port: (1..3/0/1..28);
fa_port: (1..3/0/1..24);
group: (1..8)
EXEC Mode Commands
Command line in the EXEC mode appears as follows:
console#
Table 5.241—ACL display commands
show time-range
range_name
range_name: 1..32
characters
Show the time period configuration
5.31.1 IPv4 ACL Configuration
The section provides values and description of main parameters which are used in IPv4 ACL
configuration commands. In order to create an IPv4 ACL and enter its configuration mode, use the
following command: ip access-list extended access-list. For example, to create the EltexAL
ACL, the following commands should be executed:
console#
console# configure
console(config)# ip access-list extended EltexAL
console(config-ip-al)#
Table 5.242—Main parameters of commands
Creates a permitting filtration rule in ACL.
Creates a denying filtration rule in ACL.