Cisco 300 Series Cli Manual page 701
Stackable managed switches
Hide thumbs
Also See for 300 Series:
- Cli manual (899 pages) ,
- Administration manual (586 pages) ,
- Quick start manual (72 pages)
Table of Contents
Advertisement
33
701
Command Mode
Global Configuration mode
User Guidelines
Use this command to configure a management access list. This command enters
the Management Access-list Configuration mode, where the denied or permitted
access conditions are defined with the deny and permit commands.
If no match criteria are defined, the default value is deny.
When re-entering the access-list context, the new rules are entered at the end of
the access list.
Use the
management access-class
The active management list cannot be updated or removed.
For IPv6 management traffic that is tunneled in IPv4 packets, the management ACL
is applied first on the external IPv4 header (rules with the service field are
ignored), and then again on the inner IPv6 header.
Examples
Example 1 - The following example creates a management access list called mlist,
configures management gi 1 1 and gi 1 9, and makes the new access list the active
list.
switchxxxxxx(config)#
switchxxxxxx(config-macl)#
switchxxxxxx(config-macl)#
switchxxxxxx(config-macl)#
switchxxxxxx(config)#
Example 2 - The following example creates a management access list called
'mlist', configures all interfaces to be management interfaces except gi 1 1 and
gi 1 9, and makes the new access list the active list.
switchxxxxxx(config)#
switchxxxxxx(config-macl)#
switchxxxxxx(config-macl)#
command to select the active access list.
management access-list mlist
switchpermit gi11
switchpermit gi19
switchexit
management access-class mlist
management access-list mlist
switchdeny gi11
switchdeny gi19
OL-32830-01 Command Line Interface Reference Guide
Management ACL Commands
Advertisement
Table of Contents
