Create Access-List - Extreme Networks ExtremeWare XOS Command Reference Manual
Version 11.3
Hide thumbs
Also See for ExtremeWare XOS:
- Command reference manual (2024 pages) ,
- Manual (698 pages) ,
- Command reference manual (970 pages)
Table of Contents
Advertisement
create access-list
create access-list <dynamic-rule> <conditions> <actions>
Description
Creates a dynamic ACL
Syntax Description
dynamic-rule
conditions
actions
Default
N/A.
Usage Guidelines
This command creates a dynamic ACL rule. Use the
the ACL to an interface.
The
parameter is a quoted string of match conditions, and the
conditions
quoted string of actions. Multiple match conditions or actions are separated by semi-colons. A complete
listing of the match conditions and actions is in the ExtremeWare XOS Concepts Guide, in
"Access Lists
(ACLs)".
Dynamic ACL rule names must be unique, but can be the same as used in a policy-file based ACL. Any
dynamic rule counter names must be unique.
Example
The following command creates a dynamic ACL that drops all ICMP echo-request packets on the
interface:
create access-list icmp-echo "protocol icmp;icmp-type echo-request" "deny"
The created dynamic ACL will take effect after it has been configured on the interface. The previous
example creates a dynamic ACL named icmp-echo that is equivalent to the following ACL policy file
entry:
entry
icmp-echo {
if
{
protocol
icmp;
icmp-type
echo-request;
} then {
deny;
}
}
ExtremeWare XOS 11.3 Command Reference
Specifies the dynamic ACL name. The name can be from 1-32 characters long.
Specifies the match conditions for the dynamic ACL.
Specifies the actions for the dynamic ACLs.
configure access-list add
create access-list
command to apply
parameter is a
actions
Chapter
13,
669
Advertisement
Table of Contents
