Cisco Cisco Packet Data Interworking Function (PDIF)
Access Control Lists
Applying IP ACLs ▀
ASR 5500 System Administration Guide, StarOS Release 18 ▄
229
Applying an ACL to the Subscriber Named default
This section provides information and instructions for applying an ACL to the subscriber named default.
Important:
This section provides the minimum instruction set for applying the ACL list to all traffic within a
context. For more information on commands that configure additional parameters and options, refer to Subscriber
Configuration Mode Commands in the Command Line Interface Reference.
Configuration Mode Commands in the Command Line Interface Reference.
To configure the system to provide access control list facility to subscribers:
Step 1
Step 2
Step 3
Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode
save configuration command. For additional information refer to the Verifying and Saving Your Configuration chapter.
save configuration command. For additional information refer to the Verifying and Saving Your Configuration chapter.
Applying an ACL to the Subscriber Named default
To apply the ACL to the subscriber named default, use the following configuration:
configure
context acl_ctxt_name [ -noconfirm ]
subscriber name subs_name
{ ip | ipv6 } access-group acl_list_name [ in | out ]
end
Notes:
The context name is the name of the ACL context containing the interface to which the ACL is to be applied.
If neither the
in
nor the
out
keyword is specified, the ACL will be applied to all inbound and outbound packets.
The ACL to be applied must be configured in the context specified by this command.
Up to eight ACLs can be applied to a group provided that the number of rules configured within the ACL(s) does
not exceed the 128-rule limit for the interface.
Verifying the ACL Configuration to the Subscriber Named default
These instructions are used to verify the ACL configuration.
Step 1
Verify that your ACL lists were applied properly by entering the following command in Exec Mode:
[local]host_name# show configuration context context_name
context_name is the name of the context containing the subscriber default to which the ACL(s) was/were applied.