Sample output : extended acl rules – Avaya P580 User Manual

Chapter 23

23-6

Command Reference Guide for the Avaya P580 and P882 Multiservice Switches, v6.1

Sample Output:
Extended ACL
Rules

The following table provides examples of extended ACL rules.

• Use the DSCP in the packet to

classify all traffic that has a source
IP address of 3.3.3.3

• Mask the three least significant bits

of the DSCP

(configure)#

access-list

MyAccessList1 9 permit use-
diffserv mask host 3.3.3.3

Assign a priority of 2 to all traffic that
has a source IP address of 1.1.1.1

(configure)#

access-list

MyAccessList1 10 permit use-
priority 2 1.1.1.1

Block all traffic that has a source IP
address of 10.1.0.55

(configure)#

access-list

MyAccessList1 11 deny 10.1.0.55

Table 23-2. Examples: Standard ACL Rules

To. . .

Enter. . .

2 of 2

Table 23-3. Examples: Extended ACL Rules

To. . .

Enter. . .

Use the DSCP in the packet to classify
all traffic that has a:

• Source IP address of 199.93.239.168

• Destination address in the 1.1.1

subnet

(configure)#

access-list

MyAcessList2 1 permit use-diffserv
ip host 199.93.239.168 1.1.1.0
0.0.0.255

Use the DSCP in the packet to classify
all traffic that has a:

• Source IP address in the 3.0 subnet

• Destination address in the 5.0 subnet

• Mask the three least significant bits

of the DSCP

(configure)#

access-list

MyAccessList2 2 permit use-
diffserv mask ip 3.0.0.0
0.255.255.255 5.0.0.0 0.255.255.255

Assign a priority of 2 to all TCP traffic
that has a:

• Source IP address in the 1.1 subnet

• Source port that is greater than 24

• Destination IP address in the 6.6

subnet

• Destination port of 23

(configure)#

access-list

MyAccessList2 3 permit use-
priority 2 tcp 1.1.0.0 0.0.255.255 gt
24 6.6.0.0 0.0.255.255 eq 23

1 of 3