ADTRAN AOS Version R10.1.0 Command Reference Manual page 2614

Command Reference Guide
ip access-group <ipv4 acl name>
Use the ip access-group command to create an Internet Protocol version 4 (IPv4) access control list (ACL)
to be used for packets transmitted on or received from the specified interface. Use the no form of this
command to disable this type of control. Variations of this command include:
ip access-group <ipv4 acl name> in
ip access-group <ipv4 acl name> out
Syntax Description
<ipv4 acl name>
in
out
Default Values
By default, these commands are disabled.
Command History
Release 3.1
Release 9.1
Functional Notes
When this command is enabled, the IPv4 destination address of each packet must be validated before
being passed through. If the packet is not acceptable per these settings, it is dropped.
Usage Examples
The following example sets up the unit to only allow Telnet traffic (as defined in the user-configured
TelnetOnly IP ACL) into the tunnel interface:
(config)#ip access-list extended TelnetOnly
(config-ext-nacl)#permit tcp any any eq telnet
(config-ext-nacl)#interface tunnel 1
(config-tunnel 1)#ip access-group TelnetOnly in
60000CRG0-35E
Assigns an IPv4 ACL name.
Enables access control on packets received on the specified interface.
Enables access control on packets transmitted on the specified interface.
Command was introduced.
Command was expanded to include the tunnel interfaces.
Copyright © 2012 ADTRAN, Inc.
Tunnel Interface Command Set
2614