Cisco Cisco Packet Data Gateway (PDG) Guía Para Resolver Problemas
Access Control Lists
▀ Configuring ACLs on the System
▄ Cisco ASR 5000 Series Enhanced Feature Configuration Guide
OL-22982-01
Configuring ACLs on the System
This section provides information and instructions for configuring ACLs.
Important:
This section provides the minimum instruction set for configuring access control list on the system.
For more information on commands that configure additional parameters and options, refer ACL Configuration Mode
Commands chapter in Command Line Interface Reference.
Commands chapter in Command Line Interface Reference.
To configure the system to provide access control list facility to subscribers:
Step 1
Create the access control list by applying the example configuration in the
Step 2
Specify the rules and criteria for action in ACL list by applying the example configuration in the
Step 3
Optional. The system provides an ―undefined‖ ACL that acts as a default filter for all packets into the context. The
default action is to ―permit all‖. Modify default configuration for ―unidentified‖ ACLs for by applying the example
configuration in the
default action is to ―permit all‖. Modify default configuration for ―unidentified‖ ACLs for by applying the example
configuration in the
Step 4
Step 5
Save your configuration as described in the Verifying and Saving Your Configuration chapter.
Creating ACLs
To create an ACL, use the following configuration:
Notes:
The maximum number of ACLs that can be configured per context is limited by the amount of available memory
in the VPN Manager software task. Typically, the maximum is less than 200.
Configuring Action and Criteria for Subscriber Traffic
To create rules to deny/permit the subscriber traffic and apply the rules after or before action, use the following
configuration:
configuration: