Enterasys SecureStack C2 - Page 596

Enterasys SecureStack C2

607 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

access-list (standard)

18-72 Security Configuration

Parameters

Defaults

Ifinsert,replaceormovearenotspecified,thenewentrywillbeappendedtotheaccesslist.

Ifsource2isnotspecifiedwithmove,onlyoneentrywillbemoved.

Mode

Globalconfiguration:C2(su)‐>router(Config)#

Usage

ValidaccesslistnumbersforstandardACLsare1to99.ForextendedACLs,validvaluesare100

to199.

Accesslistsareappliedtointerfacesbyusingthe

ipaccess‐groupcommand(“ipaccess‐group”

onpage 18‐74).

Examples

Thisexampleshowshowtocreateaccess list1withthreeentriesthatallowaccesstoonlythose

hostsonthethreespecifiednetworks.Thewildcardbitsapplytothehostportionsofthenetwork

addresses.Anyhostwithasourceaddressthatdoesnotmatchtheaccesslistentrieswill

be

rejected:

C2(su)->router(Config)#access-list 1 permit 192.5.34.0 0.0.0.255

C2(su)->router(Config)#access-list 1 permit 128.88.0.0 0.0.255.255

C2(su)->router(Config)#access-list 1 permit 36.0.0.0 0.255.255.255

Thisexamplemovesentry16tothebeginningofACL22:

C2(su)->router(Config)#access-list 22 move 1 16

access‐list‐

number

Specifiesastandardaccesslistnumber.Validvaluesarefrom1to99.

deny|permit Deniesorpermitsaccessifspecifiedconditionsaremet.

source Specifiesthenetworkorhostfromwhichthepacketwillbesent.Valid

optionsforexpressingsourceare:

•IPaddressorrangeofaddresses

(A.B.C.D)

• any‐Anysourcehost

• hostsource‐IPaddressofasinglesourcehost

source‐wildcard (Optional)Specifiesthebitstoignoreinthesourceaddress.

insert|replace

entry

(Optional)InsertsthisnewentrybeforeaspecifiedentryinanexistingACL,

orreplacesaspecifiedentrywiththisnewentry.

move

destination

source1source2

(Optional)Movesasequenceofaccesslistentriesbeforeanotherentry.

Destinationisthenumberoftheexistingentrybeforewhichthisnewentry

willbemoved.Source1isasingleentrynumberorthefirstentrynumberin

therangetobemoved.Source2(optional)isthe

lastentrynumberinthe

rangetobemoved.Ifsource2isnotspecified,onlythesource1entrywillbe

moved.

Table of Contents

Related product manuals

Preview: SecureStack C2 C2G124-24

SecureStack C2 C2G124-24

Preview: SecureStack A2 A2H124-24

SecureStack A2 A2H124-24

Preview: SecureStack B3 B3G124-48

SecureStack B3 B3G124-48

SecureStack A2 A2H254-16

Preview: SecureStack B3 B3G124-24P

SecureStack B3 B3G124-24P

Preview: SecureStack B2 B2G124-48P

SecureStack B2 B2G124-48P

Enterasys SSA-G1018-0652

Preview: Enterasys D-Series

Enterasys D-Series

Preview: Enterasys C3G124-24

Enterasys C3G124-24

Preview: Enterasys 08H20G4-24

Enterasys 08H20G4-24

Preview: Enterasys Matrix-V V2H124-24

Enterasys Matrix-V V2H124-24

Enterasys Matrix E1 1G694-13