To Next Page

To Previous Page

access-list (extended)

23-78 Authentication and Authorization Configuration

Defaults

Ifinsert,replace,ormovearenotspecified,thenewentrywillbeappendedtotheaccesslist.

Ifsource2isnotspecifiedwithmove,onlyoneentrywillbemoved.

Ifoperatorandportarenotspecified,accessparameterswillbeappliedtoallTCPorUDPports.

Mode

Globalconfiguration:C2(su)‐>router(Config)#

Usage

Accesslistsareappliedtointerfacesbyusingtheipaccess‐groupcommandas describedin“ip

access‐group”onpage 23‐79.

protocol SpecifiesanIPprotocolforwhichtodenyorpermitaccess.Validvalues

andtheircorrespondingprotocolsare:

•ip‐AnyInternetprotocol

• udp‐UserDatagramProtocol

• tcp‐Transmission

ControlProtocol

• icmp‐InternetControlMessageProtocol

source Specifiesthenetworkorhostfromwhichthepacketwillbesent.Valid

optionsforexpressingsourceare:

•IPaddressorrangeofaddresses(A.B.C.D)

• any‐Anysourcehost

• hostsource‐IPaddressofasinglesourcehost

source‐wildcard (Optional)Specifiesthebits

toignoreinthesourceaddress.

operatorport (Optional)AppliesaccessrulestoTCPorUDP sourceordestinationport

numbers.Possibleoperandis:

• eqport‐Matchesonlypacketsonagivenportnumber.

destination Specifiesthenetworkorhosttowhichthepacketwillbesent.Validoptions

forexpressingdestination

are:

•IPaddress(A.B.C.D)

• any‐Anydestinationhost

• hostsource‐IPaddressofasingledestinationhost

destination‐

wildcard

(Optional)Specifiesthebitstoignoreinthedestinationaddress.

insert|replace

entry

(Optional)Insertsthisnewentrybeforeaspecif iedentryinanexisting

ACL,orreplacesaspecifiedentrywiththis

newentry.

movedestination

source1source2

(Optional)Movesasequenceofaccesslistentriesbeforeanotherentry.

Destinationisthenumberoftheexistingentrybeforewhichthisnewentry

willbemoved.Source1isasingleentrynumberorthefirstentrynumberin

therangetobemoved.Source2

(optional)isthelastentrynumberinthe

rangetobemoved.Ifsource2isnotspecified,onlythesource1entrywillbe

moved.

Brand	Enterasys
Model	SecureStack C2 C2G170-24
Category	Switch
Language	English

Enterasys SecureStack C2 C2G170-24 User Manual

Table of Contents

Other manuals for Enterasys SecureStack C2 C2G170-24

Questions and Answers:

Enterasys SecureStack C2 C2G170-24 Specifications

Related product manuals