D-Link DXS-3600-16S Manual page 26
Dxs-3600 series layer 2/3 managed 10gbe switch
Hide thumbs
Also See for DXS-3600-16S:
- Hardware installation manual (36 pages) ,
- Quick installation manual (28 pages) ,
- Hardware installation manual (55 pages)
Table of Contents
Advertisement
Parameters
sn
source source-wildcard
host source
any
Default
Command Mode
Command Default Level
Usage Guideline
Example
DXS-3600-32S#configure terminal
DXS-3600-32S(config)#ip access-list standard Std-acl
DXS-3600-32S(config-std-nacl)#permit 10.20.0.0 0.0.255.255
DXS-3600-32S(config-std-nacl)#end
DXS-3600-32S#show access-list
Standard IP access list 1998 Std-acl
10 permit 10.20.0.0 0.0.255.255
Standard IP access list 1999 Std-ip
DXS-3600-32S#
3-3 ip access-list extended
This command is used to create or modify an extended IP ACL. This command will enter into the extended IP access-
list configuration mode. Use the no command to remove an extended IP access-list.
ip access-list extended {[id | name]}
no ip access-list extended {id | name}
Parameters
id
name
Default
Command Mode
Command Default Level
DXS-3600 Series 10GbE Layer 2/3 Switch CLI Reference Guide
(Optional) Specifies the ACE sequence number used. This number must be between
1 and 65535.
Specifies the source IP address. Masks are used with IP addresses in IP ACLs to
specify what should be permitted and denied. Masks, in order to configure IP
addresses on interfaces, start with 255 and have the large values on the left side.
For example, IP address 209.165.202.129 with a 255.255.255.224 mask. Masks for
IP ACLs are the reverse, for example, mask 0.0.0.255. This is sometimes called an
inverse mask or a wildcard mask. When the value of the mask is broken down into
binary (0s and 1s), the results determine which address bits are to be considered in
processing the traffic. A 0 indicates that the address bits must be considered (exact
match); a 1 in the mask is not considered.
Specifies a specific source IP address.
Means any source IP address.
None.
Standard IP Access-list Configuration Mode.
Level: 12
A sequence number will be assigned automatically if the user does not assign it
manually. The automatically assign sequence number starts from 10, and increase
10 per new entry. The start sequence number and sequence increment of the IP
ACL can be configured manually.
This example shows how to create a standard IP ACL, named Std-ip. This entry will
permit packets to the source network 10.20.0.0/16.
Specifies the ID number of the extended IP ACL. This value must be between 2000
and 3999.
Specifies the name of the extended IP access-list to be configured. The name can be
up to 32 characters.
None.
Global Configuration Mode.
Level: 12
18
- Quick Links:
- Basic Cli Commands
Hide quick links:
Advertisement
Table of Contents
