Ip access-list – Avaya P460 User Manual

Page 42

Advertising
background image

Chapter 2

Avaya P460 CLI Commands

32

Avaya P460 Reference Guide

Use the ip access-group command to activate a specific policy list.
Use the no ip access-group command to deactivate the policy list.

The syntax for this command is:

[no] ip access-group

<policy-list-number>[<default-action>]

Example:

ip access-list

User level: read-write, admin.

You can only access this command in Configure mode.
Type configure at the command prompt to enter Configure mode.

Use the ip access list command to create a specific policy rule. The access list
contains several of these rules: each rule pertains to the source IP address, the
destination IP address, the protocol, the protocol ports (if relevant), and to the ACK
bit (if relevant).
Use the no ip access list command to delete a specific rule.

The syntax for this command is:

[no] ip access-list

<access-list-number> <access-list-index>

<command> <protocol> {<source-ip>

<source-wildcard> | any |host

<source-ip>}[<operator> <port> [<port]]

{<destination-ip> <destination-

wildcard>|any |host

<destination-ip>}[<operator> <port>

[<port>]][established] [precedence]

<priority-list-number>

integer (100...199)

<default-action>

default-action-deny|default-action-permit

Router-1(configure)# ip access-group 101

<access-list-number>

integer (100...149)

<access-list-index>

integer (1...9999)

<command>

permit | deny | deny-and-notify | fwd0-7

<protocol>

ip | tcp | udp | integer (1...255)

Advertising