Management ACL Commands
deny (Management)
Cisco 220 Series Smart Plus Switches Command Line Interface Reference Guide Release 1.0.0.x
To set the deny rules (ACEs) for the management ACL, use the deny Management
Access-List Configuration mode command.
Syntax
sequence-number
[sequence
sequence-number
[sequence
address
ipv6-prefix-length
/
Parameters
•
sequence
sequence-number
for the ACL statement. The acceptable range is from 1 to 65535. If not
specified, the switch provides a number starting from 1 in ascending order.
interface-id
•
interfaces
interface IDs. The interface can be one of these types: Ethernet port or port
channel.
service
•
service
Telnet, SSH, HTTP, HTTPS, and SNMP.
ipv4-address
•
ip
address.
ipv6-address
•
ipv6
and source IPv6 address prefix length. The prefix length must be preceded
by a forward slash (/). The parameter is optional.
Default Configuration
No rules are configured.
Command Mode
Management Access-List Configuration mode
] deny interfaces
ipv4-address
] deny {ip
interface-id
} [interfaces
—(Optional) Specifies the sequence number
—(Optional) Specifies an interface ID or a list of
—Specifies the type of service. Possible values are all,
ipv4-mask
/
—Specifies the source IPv4 address and mask
ipv6-prefix-length
/
23
interface-id
service
ipv4mask
/
| ipv6
service
] service
—Specifies the source IPv6 address
service
ipv6-
345