Table of Contents
Advertisement
ip access-list Command
Use the ip access-list command to create a specific policy rule. This
command defines a policy rule. The access list contains several of these rules. Each
rule pertains to the source IP address, the destination IP address, the protocol, the
protocol ports (if relevant), and to the ACK bit (if relevant).
The syntax for this command is:
[no] ip access-list <access-list-number> <access-list-index>
<access-list-number>
<access-list-index>
<command>
<protocol>
<source-ip>
<source-wildcard>
<operator>
<port>
<destination-ip>
<destination-wildcard>
<precedence>
Example:
Router-N>ip access-list 101 23 deny ip any
To delete a specific rule, use the no form of this command.
Avaya P333R User's Guide
<command> <protocol> {<source-ip>
<source-wildcard> | any |host
<source-ip>}[<operator> <port> [<port]]
{<destination-ip> <destination-
wildcard>|any |host
<destination-ip>}[<operator> <port>
[<port>]][established] [precedence]
1.2.0.0 0.0.255.255
Chapter 7
integer (100..199)
integer (1...9999)
permit | deny | deny-and-notify | fwd0-7
ip | tcp | udp | integer (1..255)
ip network
ip network wildcard
eq | lt | gt | range
integer (1..65535)
ip network
ip network wildcard
mandatory | optional]
Cajun Campus CLI - Layer 3
209
Advertisement
Table of Contents
