769
Switch(Config)#firewall default permit
19.2.2.11 access-list ip extended
Command: access-list ip extended <name>
no access-list ip extended <name>
Functions:
Create a name extended IP access-list; ‘
no access-list ip extended
<name>
action of this command deletes this name extended IP access-list (including all
list items);
Parameters:<name>
name the access-list, the length of character string is 1-16, no pure
number sequences permitted.
Command Mode:
Global mode
Default:
No access-list configured
Usage Guide:
After assigning this commands for the first time, only am empty name
access-list is created, and no items in the list.
Examples:
Create a name extended IP access-list whose name is tcpFlow.
Switch(Config)#
access-list ip extended tcpFlow
19.2.2.12 access-list ip standard
Command: access-list ip standard <name>
no access-list ip standard <name>
Functions:
Create a name standard IP access-list; ‘
no access-list ip standard <name>
’
action of this command deletes this name standard IP access-list (including all list items);
Parameters:<name>
name the access-list, the length of character string is 1-16, no pure
number sequences permitted.
Command Mode:
Global mode
Default:
No access-list configured
Usage Guide:
After assigning this commands for the first time, only an empty name
access-list is created, no items in the list.
Examples:
Create a name extended IP access-list whose name is ipFlow.
Switch(Config)# access-list ip standard ipFlow
19.2.2.13 ipv6 access-list
Command
:
ipv6 access-list <num> {deny | permit} {<sIPv6Prefix/sPrefixlen> |
any-source | {host-source <sIPv6Addr>}}
no ipv6 access-list <num>
Functions
:
Creates a numbered standard IP access-list, if the access-list already exists,
then a rule will add to the current access-list; the “
no access-list <num>
“ command
deletes a numbered standard IP access-list.