![background image](http://html1.mh-extra.com/html/patton-electronics/iplink-2821/iplink-2821_getting-started-manual_4067682094.webp)
Examples
94
IPLink 2800 Series Getting Started Guide
7 • Access control list configuration
Examples
Denying a specific subnet
shows an example in which a server attached to network 172.16.1.0 shall not be accessible from outside
networks connected to IP interface lan of the IPLink device. To prevent access, an incoming filter rule named
Jamming is defined, which blocks any IP traffic from network 172.16.2.0 and has to be bound to IP interface lan.
Figure 16. Deny a specific subnet on an interface
The commands that have to be entered are listed below. The commands access the IPLink device via a Telnet
session running on a host with IP address 172.16.2.13, which accesses the IPLink via IP interface lan.
172.16.2.1>enable
172.16.2.1#configure
172.16.2.1(cfg)#profile acl Jamming
172.16.2.1(pf-acl)[Jamming]#deny ip 172.16.2.0 0.0.0.255 172.16.1.0 0.0.0.255
172.16.2.1(pf-acl)[Jamming]#permit ip any any
172.16.2.1(pf-acl)[Jamming]#exit
172.16.2.1(cfg)#context ip router
172.16.2.1(cfg-ip)[router]#interface lan
172.16.2.1(if-ip)[lan]#use profile acl Jamming in
172.16.2.1(if-ip)[lan]#exit
172.16.2.1(cfg-ip)#copy running-config startup-config
Host
Server
Node
Node
172.16.2.1/24
172.16.1.1/24
secure
lan
172.16.1.0
172.16.2.0
172.16.2.13/24
Summary of Contents for IPLink 2821
Page 4: ...Summary Table of Contents IPLink 2800 Series Getting Started Guide 4...
Page 18: ...About this guide IPLink 2800 Series Getting Started Guide 18...
Page 114: ...114 Chapter 9 LEDs status and monitoring Chapter contents Status LEDs 121...
Page 134: ...134 Appendix E IPLink 2800 Series factory configuration Chapter contents Introduction 142...
Page 136: ...136 Appendix F Installation checklist Chapter contents Introduction 144...