Table 176. Assigning MAC Address ACLs Example (Continued)
Command
awplus(config)# interface
port1.0.7
awplus(config_if)# mac access-
group 4025
awplus(config_if)# mac access-
group 4055
Assigning Named
IPv4 ACLs
Command
awplus> enable
awplus# configure terminal
awplus(config)# ip access-list
udpdeny
awplus(config-ip-acl)# deny
udp 190.155.0.0/16
190.155.22.3/32
awplus(config-ip-acl)# exit
awplus(config)# interface
port1.0.20
awplus(config_if)# access-
group udpdeny
To assign a Named IPv4 ACL to a port on the switch, use the ACCESS-
GROUP command in the Port Interface mode. Before you can assign an
ACL to a port, you must create the ACL on the switch. You can add
one ACL at a time to a port with the IP ACCESS-GROUP command. This
is the format of the command:
list_name
access-group
For more information about this command, see "ACCESS-GROUP" on
page 1562.
This example creates a Named IPv4 ACL, called "udpdeny", that denies
UDP packets from IPv4 source address 190.155.0.0/16 to IPv4 destination
address 190.155.22.3/32. See Table 177. Then the ACCESS-GROUP
command assigns "udpdeny" to port 20:
Table 177. Assigning Named IPv4 ACLs Example
Description
Move to the Port Interface mode for port 7.
Apply the ACL to the port with the ACCESS-
GROUP command.
Apply the ACL to the port with the ACCESS-
GROUP command.
Description
Enter the Privileged Executive mode from
the User Executive mode.
Enter the Global Configuration mode.
Create the deny ACL.
Assign filter criterion to the deny ACL.
Exit the IP ACL mode.
Move to the Port Interface mode for port 20.
Apply the ACL to the port with the ACCESS-
GROUP command.
AT-8100 Switch Command Line User's Guide
1541