Ip Access-List Role-Based - Cisco Catalyst 3650 series Command Reference Manual
Cisco ios xe everest 16.5.1a
Hide thumbs
Also See for Catalyst 3650 series:
- Hardware installation manual (126 pages) ,
- Configuration manual (94 pages) ,
- Manual (94 pages)
Table of Contents
Advertisement
ip access-list role-based
ip access-list role-based
To create a role-based (security group) access control list (RBACL) and enter role-based ACL configuration
mode, use the ip access-list role-based command in global configuration mode. To remove the configuration,
use the no form of this command.
ip access-list role-based access-list-name
no ip access-list role-based access-list-name
Syntax Description
access-list-name
Command Default
Role-based ACLs are not configured.
Command Modes
Global configuration (config)
Command History
Release
Cisco IOS XE Denali 16.3.1
Usage Guidelines
For SGACL logging, you must configure the permit ip log command. Also, this command must be configured
in Cisco IIdentity Services Engine (ISE) to enable logging for dynamic SGACLs.
Examples
The following example shows how to define an SGACL that can be applied to IPv4 traffic and enter role-based
access list configuration mode:
Switch(config)# ip access-list role-based rbacl1
Switch(config-rb-acl)# permit ip log
Related Commands
Command
permit ip log
show ip access-list
Command Reference, Cisco IOS XE Everest 16.5.1a (Catalyst 3650 Switches)
758
Name of the security group access control list (SGACL).
Modification
This command was introduced.
Description
Permits logging that matches the configured entry.
Displays contents of all current IP access lists.
Advertisement
Table of Contents
