IPv4 ACLs
26-5
26
Example
This example accepts any incoming packets if the source address is within subnet
10.7.1.x. For example, if the rule is matched; i.e., the rule (10.7.1.0 & 255.255.255.0)
equals the masked address (10.7.1.2 & 255.255.255.0), the packet passes through.
This allows TCP packets from class C addresses 192.168.1.0 to any destination
address when set for destination TCP port 80 (i.e., HTTP).
This permits all TCP packets from class C addresses 192.168.1.0 with the TCP
control code set to “SYN.”
Related Commands
access-list ip (26-2)
show ip access-list
This command displays the rules for configured IPv4 ACLs.
Syntax
show ip access-list
{
standard
|
extended
} [
acl_name
]
•
standard
– Specifies a standard IP ACL.
•
extended
– Specifies an extended IP ACL.
•
acl_name
– Name of the ACL. (Maximum length: 16 characters)
Command Mode
Privileged Exec
Example
Related Commands
permit, deny 26-2
ip access-group (26-6)
Console(config-ext-acl)#permit 10.7.1.1 255.255.255.0 any
Console(config-ext-acl)#
Console(config-ext-acl)#permit 192.168.1.0 255.255.255.0 any
destination-port 80
Console(config-ext-acl)#
Console(config-ext-acl)#permit tcp 192.168.1.0 255.255.255.0 any
control-flag 2 2
Console(config-ext-acl)#
Console#show ip access-list standard
IP standard access-list david:
permit host 10.1.1.21
permit 168.92.0.0 255.255.15.0
Console#
Содержание 8926EM
Страница 6: ...ii ...
Страница 34: ...Getting Started ...
Страница 44: ...Introduction 1 10 1 ...
Страница 62: ...Initial Configuration 2 18 2 ...
Страница 64: ...Switch Management ...
Страница 76: ...Configuring the Switch 3 12 3 ...
Страница 118: ...Basic Management Tasks 4 42 4 ...
Страница 164: ...User Authentication 6 28 6 ...
Страница 176: ...Access Control Lists 7 12 7 ...
Страница 284: ...Quality of Service 14 8 14 ...
Страница 294: ...Multicast Filtering 15 10 15 ...
Страница 300: ...Domain Name Service 16 6 16 ...
Страница 310: ...Dynamic Host Configuration Protocol 17 10 17 ...
Страница 320: ...Configuring Router Redundancy 18 10 18 ...
Страница 344: ...IP Routing 19 24 19 ...
Страница 356: ...Unicast Routing 20 12 20 Web Click Routing Protocol RIP Statistics Figure 20 5 RIP Statistics ...
Страница 386: ...Unicast Routing 20 42 20 ...
Страница 388: ...Command Line Interface ...
Страница 400: ...Overview of the Command Line Interface 21 12 21 ...
Страница 466: ...SNMP Commands 24 16 24 ...
Страница 520: ...Access Control List Commands 26 18 26 ...
Страница 546: ...Rate Limit Commands 30 2 30 ...
Страница 612: ...VLAN Commands 34 24 34 ...
Страница 626: ...Class of Service Commands 35 14 35 ...
Страница 670: ...DHCP Commands 39 16 39 ...
Страница 716: ...IP Interface Commands 41 36 41 ...
Страница 768: ...IP Routing Commands 42 52 42 ...
Страница 770: ...Appendices ...
Страница 791: ......
Страница 792: ...20 Mason Irvine CA 92618 Phn 949 679 8000 www smc com 150200062800A R02 149100000035A R01 SMC8926EM SMC8950EM ...