16.2 Use Case: Configuring IP Standard ACL
IP Standard ACLs contain rules based on Source IP Address. You can create either a
Numbered IP Standard ACL or a Named IP Standard IP Address.
Execute the following CLI commands to configure an IP based standard ACL:
1. To configure numbered IP Standard ACL:
RFSwitch(config)#access-list 2 deny host 1.2.3.4 rule-
precedence 10
RFSwitch(config)#access-list 3 deny host 1.2.3.4 rule-
precedence 10
RFSwitch(config)#access-list 3 permit any rule-precedence
20
Valid numbers for numbered IP Standard ACLs are from 1-99 and 1300-1999. In the
above CLI example, ACL 3 denies host with IP 1.2.3.4 and allows all other hosts.
2. To configure an IP Standard ACL:
RFSwitch(config)#ip access-list standard ipst2
RFSwitch(config-std-nacl)#permit host 10.1.1.10 rule-
precedence 30
RFSwitch(config-std-nacl)#deny any rule-precedence 20
Standard ACL Instance
16-19