access-list (standard)
Enterasys B5 CLI Reference 22-83
B5(su)->router#show access-lists 145
Extended IP access list 145
1: permit icmp host 88.255.255.254 any
2: permit icmp any host 11.11.16.16
3: deny icmp any any
4: permit tcp host 88.255.255.254 any eq 22
5: permit udp 88.255.128.0 0.0.127.255 eq 161 any
6: permit tcp any host 230.10.230.10 eq 1234
7: deny tcp any any eq 23
8: permit ip 88.255.128.0 0.0.127.255 any
9: deny ip any 224.0.0.0 31.0.0.0
access-list (standard)
UsethiscommandtodefineastandardIPaccesslistbynumberwhenoperatinginroutermode.
Thenoformofthiscommandremovesthedefinedaccesslistorentry.
Syntax
To create an ACL entry:
access-list access-list-number {deny | permit} source [source-wildcard]
no access-list access-list-number [entryno [entryno]]
To insert or replace an ACL entry:
access-list access-list-number insert | replace entryno {deny | permit} source
[source-wildcard]
To move entries within an ACL:
access-list access-list-number move destination source1 [source2]
Parameters
access‐list‐number
[entryno[entryno]]
Specifiesastandardaccesslistnumber.Validvaluesarefrom1to99.
Whenusingthe noaccess‐listcommand,youcandeleteawholeaccess‐list,
oronlyspecificentriesinthelistwiththeoptionalentrynoparameter.
Specifyarangeofentriesby
enteringthestartandendentrynumbers.
deny|permit Deniesorpermitsaccessifspecifiedconditionsaremet.
source Specifiesthenetworkorhostfromwhichthepacketwillbesent.Valid
optionsforexpressingsourceare:
•IPaddressorrangeofaddresses(A.B.C.D)
• any‐Anysourcehost
• hostsource‐IPaddress
ofasinglesourcehost
source‐wildcard (Optional)Specifiesthebitstoignoreinthesourceaddress.
To Next Page
Loading...
General