Deny/Permit (Ipv4 Acl Rule) - Mellanox Technologies Mellanox SX1018 Command Reference Manual

deny/permit (IPv4 ACL rule)

[seq-number <sequence-number>] {permit | deny} ip {<source-ip> [mask <ip>] |
[any]} {<dest-ip> [mask <ip>] | [any]} [action <action-id>]
no <sequence-number>
Creates a rule for IPv4 ACL.
The no form of the command deletes a rule from the IPv4 ACL.
Syntax Description sequence-number
deny | permit
{any | <source-ip> [mask
<ip>]}
{any | <destination-ip>
[mask <ip>]}
Default No rule is added by default to access control list.
Default sequence number is in multiple of 10.
Modes/Context Config IPv4 ACL
History 3.1.1400
Role admin
Example
switch (config ipv4 access-list my-list) # seq-number 10 deny ip any any
switch (config ipv4 access-list my-list) #
Related Commands ipv4/mac access-list
ipv4/mac port access-group
Note
Optional parameter to set a specific sequence number
for the rule. The range is:1-500.
Determines the type of the rule, deny or permit action.
Sets source IP and optionally sets a mask for that IP
address. The "any" option will cause the rule not to
check the source IP.
Sets destination IP and optionally sets a mask for that
MAC. The "any" option will cause the rule not to check
the destination MAC.
Mellanox Technologies
Rev 1.6.2
385