Table of Contents
Advertisement
Security Configuration Command Set
Configuring Access Lists
protocol
source
source-wildcard
Command Syntax of the "no" Form
The "no" form of this command removes the defined access list or entry:
no access-list access-list-number [entry]
Command Type
Router command.
Command Mode
Global configuration: Matrix>Router1(config)#
Command Defaults
•
•
Examples
This example shows how to allow access to only those hosts on the three specified networks. The
wildcard bits apply to the host portions of the network addresses. Any host with a source address
that does not match the access list statements will be rejected:
Matrix>Router1(config)#access-list 1 permit 192.5.34.0 0.0.0.255
Matrix>Router1(config)#access-list 1 permit 128.88.0.0 0.0.255.255
Matrix>Router1(config)#access-list 1 permit 36.0.0.0 0.255.255.255
14-162 Matrix NSA Series Configuration Guide
Specifies an IP protocol for which to deny or permit access.
Valid values and their corresponding protocols are:
•
•
•
•
Specifies the network or host from which the packet will be
sent. Valid options for expressing source are:
•
•
•
(Optional) Specifies the bits to ignore in the source address.
If insert, replace or move are not specified, the new entry will be appended to
the access list.
If source2 is not specified with move, only one entry will be moved.
ip - Any Internet protocol
icmp - Internet Control Message Protocol
udp - User Datagram Protocol
tcp - Transmission Protocol
IP address or range of addresses (A.B.C.D)
any - Any source host
host source - IP address of a single source host
Advertisement
Chapters
Table of Contents
