Dell Networking 2024 Reference Manual page 269

in — The access list is applied to ingress packets.
•
out—The access list is applied to egress packets.
•
• control-plane—The access list is applied to egress control plane packets
only. This is only available in Global Configuration mode.
seqnum — Precedence for this interface and direction. A lower sequence
•
number has higher precedence. Range: 1 – 4294967295. Default is
Default Configuration
This command has no default configuration.
Command Mode
Global Configuration and Interface Configuration (Ethernet, VLAN, or Port
Channel) modes
User Guidelines
Global mode command configures the ACL on all the interfaces, whereas the
interface mode command does so for the interface.
The optional control-plane keyword allows application of an ACL on the CPU
port. Control-plane matches actions occur in the egress direction. System
level rules are applied on ingress, after application of any user defined ingress
rules, therefore, it is not possible to rate limit packets matching the system
defined rules with an ACL having a control-plane target. Use the rate-limit
cpu command to reduce the effects of low priority traffic on the switch CPU.
An implicit deny-all rule is added after the end of the last access group in each
direction (in or out).
Examples
console(config)#ip access-group aclname in
console(config)#no ip access-group aclname in
console(config)#ip access-group aclname1 out
console(config)#interface te1/0/1
console(config-if-Te1/0/1)#ip access-group aclname out 2
console(config-if-Te1/0/1)#no ip access-group aclname out
ACL Commands
1
.
269