664 IP Access Control List Commands
with specified name becomes active. The ACL rule is removed when the time-
range with specified name becomes inactive. For information about configuring
time ranges, see “Time Range Commands for Time-Based ACLs” on page 687.
The
assign-queue
parameter allows specification of a particular hardware queue
for handling traffic that matches this rule. The allowed
queue-id value is 0-(n-
1), where n is the number of user configurable queues available for the hardware
platform. The
assign-queue parameter is valid only for a permit rule.
The permit command’s optional attribute rate-limit allows you to permit only
the allowed rate of traffic as per the configured rate in kbps, and burst-size in
kbytes.
Parameter Description
{deny | permit} Specifies whether the IP ACL rule permits or denies
the matching traffic.
Every Match every packet.
{
eigrp | gre |
icmp | igmp | ip |
ipinip | ospf |
pim | tcp | udp |
0 -255
}
Specifies the protocol to match for the IP ACL rule.
srcip srcmask | any |
host
srcip
Specifies a source IP address and source netmask to
match for the IP ACL rule.
Specifying “any” implies specifying srcip as
“0.0.0.0” and srcmask as “255.255.255.255”.
Specifying “host A.B.C.D” implies srcip as
“A.B.C.D” and srcmask as “0.0.0.0”.
To Next Page
Loading...
