Enterasys Networks 1H582-xx User Manual
Security Configuration Command Set
Configuring Access Lists
14-90
Syntax Description
Command Type
Router command.
Command Mode
Privileged EXEC: Matrix>Router#
Command Defaults
If number is not specified, the entire table of access lists will be displayed.
Example
This example shows how to display IP access list number 101. This is an extended access list, which
permits or denies ICMP, UDP and IP packets based on restrictions configured with the one of the
access-list commands. For details on configuring standard access lists, refer to
permits or denies ICMP, UDP and IP packets based on restrictions configured with the one of the
access-list commands. For details on configuring standard access lists, refer to
.
For details on configuring extended access lists, refer to
.
14.3.7.2 access-list (standard)
Use this command to define a standard IP access list by number when operating in router mode.
Restrictions defined by an access list are applied by using the
Restrictions defined by an access list are applied by using the
ip access-group command
(
).
access-list access-list-number [insert | replace entry] | [move destination source1
[source2]] {deny | permit} source [source-wildcard]
[source2]] {deny | permit} source [source-wildcard]
access-list-
number
number
(Optional) Displays access list information for a specific
access list number. Valid values are between 1 and 199.
access list number. Valid values are between 1 and 199.
Matrix>Router#show access-lists 101
Extended IP access list 101
permit icmp host 18.2.32.130 any
permit udp host 198.92.32.130 host 171.68.225.126 eq
deny ip 150.136.0.0 0.0.255.255 224.0.0.0 15.255.255.255
deny ip 11.6.0.0 0.1.255.255 224.0.0.0 15.255.255.255 2)
deny ip 172.24.24.0 0.0.1.255 224.0.0.0 15.255.255.255
ROUTER: This command can be executed when the device is in router mode only.
For details on how to enable router configuration modes, refer to
For details on how to enable router configuration modes, refer to