【Example】
!Configure ACL 1 to deny the packet with the source IP to be 192.168.3.1
QTECH(config)#access-list 1 deny 192.168.3.1 0
!Configure ACL 100 to deny packet with the 0xff of TCP source port number to be
0
QTECH(config)# access-list 100 deny tcp any 0 0xff any
5.1.4 access-list extended
Use access-list extended command to create an extended ACL with name ID,
then enter extended ACL configuration mode. Use no access-list command to
delete one or all subitems of ACL with number ID or name ID or delete all ACL.
access-list extended name [ match-order { config | auto } ]
no access-list { all | { access-list-number | name access-list-name } [ subitem
subitem ] }
【Parameter】
name : character string parameter with initial English letters (that is [a-z,A-Z]) with
any kind, excluding space and quotation mark; all、any are not allowed.
5-42
To Next Page
Loading...
Need help?
General
