Sequencing Access-List Entries And Revising The Access List - Cisco Catalyst 2960 series Configuration Manual
Consolidated platform configuration guide, ios release 15.2(4)e
Hide thumbs
Also See for Catalyst 2960 series:
- Software configuration manual (980 pages) ,
- Command reference manual (800 pages) ,
- Configuration manual (120 pages)
Table of Contents
Advertisement
Command or Action
Step 6
[sequence-number] permit protocol source
source-wildcard[operator port[port]] destination
destination-wildcard[operator port[port]] [option
option-name] [precedence precedence][tos tos] [log]
[time-range time-range-name] [fragments]
Example:
Device(config-ext-nacl)# permit tcp any neq 45
565 632 any eq 23 45 34 43
Step 7
Repeat Steps 5 and 6 as necessary, adding permit or deny
statements to consolidate access list entries where possible.
Use the no sequence-number command to delete an entry.
Step 8
end
Example:
Device(config-std-nacl)# end
Step 9
show ip access-lists access-list-name
Example:
Device# show ip access-lists mylist1
Sequencing Access-List Entries and Revising the Access List
This task shows how to assign sequence numbers to entries in a named IP access list and how to add or delete
an entry to or from an access list. When completing this task, keep the following points in mind:
• Resequencing the access list entries is optional. The resequencing step in this task is shown as required
• In the following procedure, the permit command is shown in Step 5 and the deny command is shown
because that is one purpose of this feature and this task demonstrates that functionality.
in Step 6. However, that order can be reversed. Use the order that suits the need of your configuration.
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
Purpose
• If a sequence-number is specified, the rest of the
command syntax is optional.
Specifies a permit statement in named access list
configuration mode.
• In this instance, a group of access list entries with
noncontiguous ports was consolidated into one permit
statement.
• You can configure up to 10 ports after the eq and neq
operators.
Allows you to revise the access list.
(Optional) Exits named access list configuration mode and
returns to privileged EXEC mode.
(Optional) Displays the contents of the access list.
How to Configure ACLs
1195
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
