Foundry NetIron M2404C and M2404F Metro Access Switches
Configuring ACLs (Rev. 03)
Overview
© 2008 Foundry Networks, Inc
Page 41 of 50
Command
Description
show ip access-groups
statistics
Displays QoS statistics information for all interfaces, AG or
VLAN to which QoS statistics are applied.
show ether-type access-
groups
Displays the EtherType ACGs configured on the interfaces and
VLANs.
Displaying the IP Access Control Lists
The
show ip access-lists
command, in Privileged (Enable) mode, displays the configured IP ACLs.
By using the
acl-number
argument, the user can restrict the output to the specified ACL.
Command Syntax
device-name
#
show ip access-lists
[<
acl-number
>]
Argument Description
acl-number
(Optional). Number of ACL to display, in the ranges <1-199> and <300-399>.
Example
device-name
#
show ip access-lists
Standard IP access list 1
permit host 192.98.2.1
permit 192.0.0.0 0.255.255.255
remark test acl
Extended IP access list 100
permit tcp 192.98.0.0 0.0.255.255 host 202.20.0.1 eq telnet
Extended IP access list 101
permit tcp host 202.20.0.1 eq telnet 192.98.0.0 0.0.255.255
permit tcp host 202.20.0.1 eq ftp-data 192.98.0.0 0.0.255.255
Extended IP access list 102
permit tcp 192.98.0.0 0.0.255.255 any
Displaying the MAC ACLs
The
show mac access-lists
command, in Privileged (Enable) mode, displays the configured MAC
ACLs. By using the
acl-number
argument, the user can restrict the output to the specified ACL.
Command Syntax
device-name
#
show mac access-lists
[<
acl-number
>]
Argument Description
acl-number
(Optional). Number of ACL to display, in the range <400-499>.
Example
device-name
(config)#
access-list 400 permit any any vlan 333 0x0000
device-name
(config)#
access-list 401 permit any any provider-vlan 10
0xf00f vlan 9 0x0000