Cisco Cisco Packet Data Gateway (PDG) Guía De Administador
Access Control Lists
Applying IP ACLs ▀
Cisco ASR 5000 System Administration Guide ▄
245
Verifying the ACL Configuration on an Interface
This section describes how to verify the ACL configuration.
Step 1
In the Exec Mode, enter the following command:
show configuration context context_name
context_name is the name of the context containing the interface to which the ACL(s) was/were applied.
The output of this command displays the configuration of the entire context. Examine the output for the commands
pertaining to interface configuration. The commands display the ACL(s) applied using this procedure.
pertaining to interface configuration. The commands display the ACL(s) applied using this procedure.
configure
context context_name
ip access-list acl_name
deny host ip_address
deny ip any host ip_address
exit
ip access-group access_group_name
service-redundancy-protocol
exit
interface interface_name
ip address ip_address/mask
exit
subscriber default
exit
aaa group default
exit
gtpp group default
end
context context_name
ip access-list acl_name
deny host ip_address
deny ip any host ip_address
exit
ip access-group access_group_name
service-redundancy-protocol
exit
interface interface_name
ip address ip_address/mask
exit
subscriber default
exit
aaa group default
exit
gtpp group default
end
Applying an ACL to All Traffic Within a Context
This section provides information and instructions for applying one or more ACLs to a context configured within a
specific context on the system. The applied ACLs, known as policy ACLs, contain rules that apply to all traffic
facilitated by the context.
specific context on the system. The applied ACLs, known as policy ACLs, contain rules that apply to all traffic
facilitated by the context.
Important:
This section provides the minimum instruction set for applying the ACL list to all traffic within a
context. For more information on commands that configure additional parameters and options, refer to the Context
Configuration Mode Commands chapter in the Command Line Interface Reference.
Configuration Mode Commands chapter in the Command Line Interface Reference.
To configure the system to provide access control list facility to subscribers:
Step 1
Step 2
Step 3
Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode
save configuration command. For additional information refer to the Verifying and Saving Your Configuration chapter.
save configuration command. For additional information refer to the Verifying and Saving Your Configuration chapter.