To Next Page

To Previous Page

access-list (standard)

18-72 Security Configuration

Parameters

Defaults

Ifinsert,replaceormovearenotspecified,thenewentrywillbeappendedtotheaccesslist.

Ifsource2isnotspecifiedwithmove,onlyoneentrywillbemoved.

Mode

Globalconfiguration:C2(su)‐>router(Config)#

Usage

ValidaccesslistnumbersforstandardACLsare1to99.ForextendedACLs,validvaluesare100

to199.

Accesslistsareappliedtointerfacesbyusingthe

ipaccess‐groupcommand(“ipaccess‐group”

onpage 18‐74).

Examples

Thisexampleshowshowtocreateaccess list1withthreeentriesthatallowaccesstoonlythose

hostsonthethreespecifiednetworks.Thewildcardbitsapplytothehostportionsofthenetwork

addresses.Anyhostwithasourceaddressthatdoesnotmatchtheaccesslistentrieswill

be

rejected:

C2(su)->router(Config)#access-list 1 permit 192.5.34.0 0.0.0.255

C2(su)->router(Config)#access-list 1 permit 128.88.0.0 0.0.255.255

C2(su)->router(Config)#access-list 1 permit 36.0.0.0 0.255.255.255

Thisexamplemovesentry16tothebeginningofACL22:

C2(su)->router(Config)#access-list 22 move 1 16

access‐list‐

number

Specifiesastandardaccesslistnumber.Validvaluesarefrom1to99.

deny|permit Deniesorpermitsaccessifspecifiedconditionsaremet.

source Specifiesthenetworkorhostfromwhichthepacketwillbesent.Valid

optionsforexpressingsourceare:

•IPaddressorrangeofaddresses

(A.B.C.D)

• any‐Anysourcehost

• hostsource‐IPaddressofasinglesourcehost

source‐wildcard (Optional)Specifiesthebitstoignoreinthesourceaddress.

insert|replace

entry

(Optional)InsertsthisnewentrybeforeaspecifiedentryinanexistingACL,

orreplacesaspecifiedentrywiththisnewentry.

move

destination

source1source2

(Optional)Movesasequenceofaccesslistentriesbeforeanotherentry.

Destinationisthenumberoftheexistingentrybeforewhichthisnewentry

willbemoved.Source1isasingleentrynumberorthefirstentrynumberin

therangetobemoved.Source2(optional)isthe

lastentrynumberinthe

rangetobemoved.Ifsource2isnotspecified,onlythesource1entrywillbe

moved.

Brand	Enterasys
Model	SecureStack C2
Category	Switch
Language	English

Enterasys SecureStack C2 User Manual

Table of Contents

Questions and Answers:

Enterasys SecureStack C2 Specifications

Related product manuals