Security and authentication
11.4 IP access control list
SCALANCE XM-400/XR-500 Command Line Interface (CLI)
Configuration Manual, 06/2016, C79000-G8976-C252-11
843
Keyword for the Differentiated Services
-
Value for the Differentiated Services
Codepoint
0 ... 63
For information on names of addresses and interfaces, refer to the section "Interface
identifiers and addresses (Page 42)".
The IP access list has been configured.
Note
Subnet mask for individual hosts
If you create the rule for a single system (one IP address), you wi
ll need to specify the
subnet mask "255,255,255,255". As an alternative, you can specify the keyword "host"
followed by the IP address.
You delete an IP access control list with the no ip access-list standard <acl-num>
command.
You display the configuration of the access control list with the
show access-lists command.
With this command, you configure an IP access control list for ICMP messages.
You have the following options:
● All incoming and/or outgoing ICMP messages are forwarded.
● Incoming and/or outgoing ICMP messages of a specific host are forwarded.
● Incoming and/or outgoing ICMP messages of hosts of a specific subnet are forwarded.
Note
Processing order of the lists
The access control lists
are processed on the interface in the order in which they were
The index number of the access control list is not used for this.