Microsoft ES4625 Manuale Utente
Access Control List Commands
4-93
4
Related Commands
show ip access-list
This command displays the rules for configured IP ACLs.
Syntax
show ip access-list {standard | extended} [acl_name]
• standard – Specifies a standard IP ACL.
• extended – Specifies an extended IP ACL.
• acl_name – Name of the ACL. (Maximum length: 16 characters)
• extended – Specifies an extended IP ACL.
• acl_name – Name of the ACL. (Maximum length: 16 characters)
Command Mode
Privileged Exec
Example
Related Commands
permit, deny 4-90
ip access-group (4-98)
ip access-group (4-98)
access-list ip mask-precedence
This command changes to the IP Mask mode used to configure access control
masks. Use the no form to delete the mask table.
masks. Use the no form to delete the mask table.
Syntax
[no] access-list ip mask-precedence {in | out}
• in – Ingress mask for ingress ACLs.
• out – Egress mask for egress ACLs.
• out – Egress mask for egress ACLs.
Default Setting
Default system mask: Filter inbound packets according to specified IP ACLs.
Command Mode
Global Configuration
Command Usage
• A mask can only be used by all ingress ACLs or all egress ACLs.
• The precedence of the ACL rules applied to a packet is not determined by
• The precedence of the ACL rules applied to a packet is not determined by
order of the rules, but instead by the order of the masks; i.e., the first mask
that matches a rule will determine the rule that is applied to a packet.
that matches a rule will determine the rule that is applied to a packet.
Console#show ip access-list standard
IP standard access-list david:
IP standard access-list david:
permit host 10.1.1.21
permit 168.92.0.0 255.255.15.0
permit 168.92.0.0 255.255.15.0
Console#