Applying An Acl To An Individual Subscriber; Verifying The Acl Configuration To An Individual Subscriber - Cisco ASR 5500 System Administration Manual

Applying an ACL to an Individual Subscriber

Applying an ACL to an Individual Subscriber
To apply the ACL to an individual subscriber, use the following configuration:
configure
context acl_ctxt_name [ -noconfirm ]
Notes:
• The context name is the name of the ACL context containing the interface to which the ACL is to be
• If neither the in nor the out keyword is specified, the ACL will be applied to all inbound and outbound
• The ACL to be applied must be configured in the context specified by this command.
• Up to eight ACLs can be applied to a group provided that the number of rules configured within the

Verifying the ACL Configuration to an Individual Subscriber

These instructions are used to verify the ACL configuration.
Verify that your ACL lists were applied properly by entering the following command in Exec Mode:
host_name
[local]
context_name is the name of the context containing the subscriber subs1 to which the ACL(s) was/were applied.
The output of this command displays the configuration of the entire context. Examine the output for the commands
pertaining to interface configuration. The commands display the ACL(s) applied using this procedure.
configure
context_name
context
ip access-list
deny host
deny ip any host
exit
ip access-group
service-redundancy-protocol
exit
interface
ip address
exit
subscriber default
exit
subscriber name
ASR 5500 System Administration Guide, StarOS Release 21.5
194
subscriber name subs_name
{ ip | ipv6 } access-group acl_list_name [ in | out ]
end
applied.
packets.
ACL(s) does not exceed the 128-rule limit for the interface.
show configuration context context_name
#
acl_name
ip_address
ip_address
access_group_name
interface
ip_address/mask
subscriber_name
Access Control Lists