58
SIGNAMAX LLC • www.signamax.eu
ip access-list
extended
{
access-list-number
|
access-list-name
}
Syntax
Description
access-list-number
The serial number of an IP extended
access list. The value range is 1001-
2000.
access-list-name
The name of an IP extended access
list.
[Configuration mode] Global configuration mode
[Default status] By default, no access lists and rules are configured.
The no format of the command is to delete an access list, including all
the rules in it.
no
ip access-list
extended
{
access-list-number
|
access-list-
name
}
permit | deny
This command is to configure the rule of a permit or deny IP extended
access list.
[
sequence
] {
permit | deny
}
protocol
source
source-wildcard
[
operator
source-port
[
source-port-wildcard
]]
destination
destination-
wildcard
[
operator
destination-port
[
destination-port-wildcard
]] [
ack /
fin / psh / rst / syn / urg
] [
precedence
precedence
] [
tos
tos
]
[
dscp
dscp
] [
time-range
time-range-name
] [
action-group
action-
group-name
]
Syntax
Description
sequence
The serial number of a rule.
permit
If the conditions are matched, the access is
permitted.
deny
If the conditions are matched, the access is
denied.
protocol
The matched protocol. The following values can
be configured:
<0-255> The value of the protocol number
icmp Specifies Internet error and control
packet protocol (ICMP)
igmp Specifies the Internet group
management protocol (IGMP)
ip Specifies all Internet protocols
tcp Specifies the transmission control
protocol (TCP)
Summary of Contents for 065-7434
Page 1: ...24 Port 10 100 L3 Switch Model 065 7434 Configuration Guide Revision A1 ...
Page 245: ...245 SIGNAMAX LLC www signamax eu Application Example Example of configuring DHCP Snooping ...
Page 302: ...302 SIGNAMAX LLC www signamax eu Default status no switching interface ...
Page 368: ......
Page 655: ...287 SIGNAMAX LLC www signamax eu Sub VLAN members in the system ...