Table of Contents
Advertisement
Displaying the ACLs
Displaying IP
ACLs
IP access-list 3000
IP access-list 3104
MAC access-list 4400
IP access-list icmppermit
IP access-list denytcp
Total number of access-lists= 5
Displaying IP
ACL Port
Assignments
Section X: Network Management
There are several ways of displaying information about ACLs on the
switch. You can use one command to display a list the Numbered IP IP
ACLs. In addition, you can display the port assignments of all the ACLs
and the ACLs assigned to VTY lines. See the following:
"Displaying IP ACLs" on page 1051
"Displaying IP ACL Port Assignments" on page 1051
"Displaying ACLs Assigned to VTY Lines" on page 1052
To display the Numbered IP and Named IP ACLs use the SHOW
ACCESS-LIST command in the Privileged Exec mode. Here is the
command syntax followed by an example display.
awplus# show access-list
permit icmp any any
deny 149.87.201.1 mask 255.255.255.0 any
permit any any
ICMP permit an any time-range daily
TCP deny 149.55.65.0 mask 255.255.255.0 any time-range NONE
Figure 169. SHOW ACCESS-LIST Command
As you can see from the example, the SHOW ACCESS-LIST command
doesn't display which, if any, ports the ACLs are assigned to. To display
that information, use the SHOW INTERFACE ACCESS-GROUP
command. See the next section.
To display the IP ACL port assignments, use the SHOW INTERFACE
ACCESS-GROUP command in the Privileged Exec mode. Here is the
format of the command:
show interface
port
access-group
AT-9000 Switch Command Line User's Guide
1051
Advertisement
Table of Contents
