Cisco Cisco ASR 5000
Crypto Template Configuration Mode Commands
▀ blacklist
▄ Command Line Interface Reference, StarOS Release 18
3020
blacklist
Enables the use of a blacklist (access denied) file to be used by a security gateway.
Product
All products supporting IPSec blacklisting
Important:
This command appears in the CLI for this release. However, it has not been qualified for use with
any current Cisco StarOS gateway products.
Privilege
Security Administrator
Syntax
[ no ] blacklist
no
Disables the use of a blacklist.
Usage
Enable the use of a previously created blacklist to deny access to prohibited peers via a security gateway.
A blacklist is a list or register of entities that are being denied a particular privilege, service, mobility, access
or recognition. With blacklisting, any peer is allowed to connect as long as it does not appear in the list.
Each entry in the blacklist file should contain the ID type so that the validation is performed for that ID type.
In every entry, the ID type and ID value should be separated by a space. Only DOS and UNIX file formatting
are supported. For additional information, refer to the System Administration Guide.
A blacklist is a list or register of entities that are being denied a particular privilege, service, mobility, access
or recognition. With blacklisting, any peer is allowed to connect as long as it does not appear in the list.
Each entry in the blacklist file should contain the ID type so that the validation is performed for that ID type.
In every entry, the ID type and ID value should be separated by a space. Only DOS and UNIX file formatting
are supported. For additional information, refer to the System Administration Guide.
Example
The following command enables use of a blacklist:
blacklist