Access Control Lists (ACLs) for the Series 3400cl and Series 6400cl Switches
Editing ACLs and Creating an ACL Offline
â– Allow any inbound access from all other addresses on port 2:
â– Permit internet access to the following two IP addresses through port
24, but deny access to all other addresses through this port (without
ACL logging).
• 10.10.20.98
• 10.10.20.21
â– Deny all traffic from port 3 to the server at 10.10.10.100 (without ACL
logging).
â– Deny all traffic from port 5 to the server at 10.10.10.100 (without ACL
logging), but allow any other traffic from port 5.
1. To create an ACL offline for the above requirements, you would create
a .txt file with the content shown in figure
10-29.
You can use the “ ;“ character to denote a comment.
The file stored on your TFTP server retains
comments, and they appear when you use copy to
download the ACL command file. (Comments are not
saved in the switch configuration.)
Enables a
comment
in the file.
Blank lines in the file
cause breaks in the
displayed line-
numbering sequence
when you copy the
command file to the
switch. This is normal
operation. (See
figure 10-30.)
Figure 10-29. Example of a.txt File Designed for Creating an ACL
10-69
To Next Page
Loading...
Need help?
General