To Next Page

To Previous Page

access-list (extended)

SecureStack C2 Configuration Guide 18-77

Defaults

Ifinsert,replaceormovearenotspecified,thenewentrywillbeappendedtotheaccesslist.

Ifsource2isnotspecifiedwithmove,onlyoneentrywillbemoved.

Mode

Globalconfiguration:C2(su)‐>router(Config)#

Usage

ValidaccesslistnumbersforstandardACLsare1to99.ForextendedACLs,validvaluesare100

to199.

Accesslistsareappliedtointerfacesbyusingthe

ipaccess‐groupcommand(“ipaccess‐group”

onpage 18‐74).

Examples

Thisexampleshowshowtocreateaccess list1withthreeentriesthatallowaccesstoonlythose

hostsonthethreespecifiednetworks.Thewildcardbitsapplytothehostportionsofthenetwork

addresses.Anyhostwithasourceaddressthatdoesnotmatchtheaccesslistentrieswill

be

rejected:

C2(su)->router(Config)#access-list 1 permit 192.5.34.0 0.0.0.255

C2(su)->router(Config)#access-list 1 permit 128.88.0.0 0.0.255.255

C2(su)->router(Config)#access-list 1 permit 36.0.0.0 0.255.255.255

Thisexamplemovesentry16tothebeginningofACL22:

C2(su)->router(Config)#access-list 22 move 1 16

access-list (extended)

UsethiscommandtodefineanextendedIPaccesslistbynumberwhenoperatinginroutermode.

Thenoformofthiscommandremovesthedefinedaccesslistorentry:

source Specifiesthenetworkorhostfromwhichthepacketwillbesent.Valid

optionsforexpressingsourceare:

•IPaddressor

rangeofaddresses(A.B.C.D)

• any‐Anysourcehost

• hostsource‐IPaddressofasinglesourcehost

source‐wildcard (Optional)Specifiesthebitstoignoreinthesourceaddress.

insert|replace

entry

(Optional)InsertsthisnewentrybeforeaspecifiedentryinanexistingACL,

orreplacesaspecifiedentrywith

thisnewentry.

movedestination

source1source2

(Optional)Movesasequenceofaccesslistentriesbeforeanotherentry.

Destinationisthenumberoftheexistingentrybeforewhichthisnewentry

willbemoved.Source1isasingleentrynumberorthefirstentrynumberin

therangetobemoved.Source2

(optional)isthelastentrynumberinthe

rangetobemoved.Ifsource2isnotspecified,onlythesource1entrywillbe

moved.

Brand	Enterasys
Model	SecureStack C2
Category	Switch
Language	English

Enterasys SecureStack C2 User Manual

Table of Contents

Questions and Answers:

Enterasys SecureStack C2 Specifications

Related product manuals