To Next Page

To Previous Page

access-list (extended)

22-84 Authentication and Authorization Configuration

Defaults

Ifinsert,replaceormovearenotspecified,thenewentrywillbeappendedtotheaccesslist.

Ifsource2isnotspecifiedwithmove,onlyoneentrywillbemoved.

Mode

Globalconfiguration:B5(su)‐>router(Config)#

Usage

ValidaccesslistnumbersforstandardACLsare1to99.ForextendedACLs,validvaluesare100

to199.

Accesslistsareappliedtointerfacesbyusingthe

ipaccess‐groupcommand(page22‐86).

Allaccesslistshaveanimplicit“denyanyany”statmentastheirlastentry.

Examples

Thisexampleshowshowtocreateaccesslist1withthreeentriesthatallowaccesstoonlythose

hostsonthethreespecifiednetworks.Thewildcardbitsapplytothehostportionsofthenetwork

addresses.Anyhostwithasourceaddressthatdoesnotmatchtheaccesslistentrieswill

be

rejected:

B5(su)->router(Config)#access-list 1 permit 192.5.34.0 0.0.0.255

B5(su)->router(Config)#access-list 1 permit 128.88.0.0 0.0.255.255

B5(su)->router(Config)#access-list 1 permit 36.0.0.0 0.255.255.255

Thisexamplemovesentry16tothebeginningofACL22:

B5(su)->router(Config)#access-list 22 move 1 16

access-list (extended)

UsethiscommandtodefineanextendedIPaccesslistbynumberwhenoperatinginroutermode.

Thenoformofthiscommandremovesthedefinedaccesslistorentry:

Syntax

To create an extended ACL entry:

access-list access-list-number {deny | permit} protocol source [source-wildcard]

[eq port] destination [destination-wildcard] [eq port]

no access-list access-list-number [entryno [entryno]]

To insert or replace an ACL entry:

access-list access-list-number insert | replace entryno {deny | permit} protocol

source [source-wildcard] [eq port] destination [destination-wildcard] [eq port]

insert|replace

entryno

(Optional)InsertsthisnewentrybeforeaspecifiedentryinanexistingACL,

orreplacesaspecifiedentrywiththisnewentry.

movedestination

source1source2

(Optional)Movesasequenceofaccesslistentriesbeforeanotherentry.

Destinationisthenumberoftheexistingentrybeforewhichthis

newentry

willbemoved.Source1isasingleentrynumberorthefirstentrynumberin

therangetobemoved.Source2(optional)isthelastentrynumberinthe

rangetobemoved.Ifsource2isnotspecified,onlythesource1entrywillbe

moved.

Brand	Enterasys
Model	b5
Category	Other
Language	English

Enterasys b5 User Manual

Table of Contents

Questions and Answers:

Enterasys b5 Specifications