To create a numbered IPv4 ACL, see the commands listed in Table
234, "ACCESS-LIST Commands for Creating Numbered IPv4 ACLs"
on page 1707.
Table 234. ACCESS-LIST Commands for Creating Numbered IPv4 ACLs
To Do This Task
Create Numbered IPv4 ACLs for ICMP
packets.
Create Numbered IPv4 ACLs for
source and destination IP addresses.
Create Numbered IPv4 ACLs for
packets of specified protocols.
Create Numbered IPv4 ACLs that filter
ingress packets based on TCP port
numbers.
Create Numbered IPv4 ACLs that filter
ingress packets based on UDP port
numbers.
Use the no form of this command, NO MATCH ACCESS-GROUP, to
remove an access group created with either a group name or a group
number from a class map. See "NO MATCH ACCESS-GROUP" on
page 1740.
Confirmation Command
"SHOW CLASS-MAP" on page 1760
"SHOW RUNNING-CONFIG" on page 164
Examples
The following example creates a named IPv4 ACL access list called
"icmppermit" and matches it to a class map called "cmap1:"
awplus> enable
awplus# configure terminal
awplus(config)# access-list icmppermit
awplus(config-ip-acl)# permit icmp any any
awplus(config-ip-acl)# exit
awplus(config)# class-map cmap1
awplus(config-cmap)# match access-group icmppermit
AT-8100 Switch Command Line User's Guide
Use This Command
"ACCESS-LIST ICMP" on
page 1567
"ACCESS-LIST IP" on
page 1570
"ACCESS-LIST PROTO"
on page 1574
"ACCESS-LIST TCP" on
page 1579
"ACCESS-LIST UDP" on
page 1583
1707