Security and authentication
11.4 IP access control list
SCALANCE XM-400/XR-500 Command Line Interface (CLI)
Configuration Manual, 06/2016, C79000-G8976-C252-11
837
ip access-group
Description
With this command, you enable the access control of the packets of an interface.
Note
In the internal configuration mode of a VLAN, the ACL rule applies to all ports that belong to
the VLAN.
● An IP access list has been created.
● You are in the Interface Configuration mode of a switch port, a router port or a VLAN.
The command prompt is as follows:
– With a switch port:
cli(config-if-Gi$-$)#
cli(config-if-Ex$-$)#
– With a router port
cli(config-RPort-Gi$-$)#
– With a VLAN
cli(config-if-vlan-$$$)#
Call up the command with the following parameters:
ip access
-group <access
-list-number(1-128)> {in|out}
The parameters have the following meaning:
Number of the access control list
Specifies that incoming packets are
-
Specifies that outgoing packets are
-
Note
Restrictions when filtering layer 2 interfaces
Use an expanded MAC address access co
ntrol list to filter packets outgoing on layer 2
To Next Page
Loading...
Need help?
General