13 acl: layer 3 packet filtering configuration – Asus GigaX3124 User Manual
Page 117
GigaX3124 Layer3 Switch CLI Command Reference
92
13 ACL: Layer 3 Packet Filtering
Configuration
13.1 access-list (<1-99>|<1300-1999>)
(deny|permit) IPADDR MASK [IFNAME]
Syntax
access-list (<1-99>|<1300-1999>) (deny|permit) IPADDR
A.B.C.D [IFNAME]
Parameters
access-list Add an access list entry
<1-99> standard IP access-list number
<1300-1999> standard IP access-list number (expanded range)
permit Specify packets to forward
deny Specify packets to reject.
IPADDR Source address
MASK Source wildcard bits
[IFNAME] Egress interface name
Command Mode Global configuration mode
No/clear
no access-list (<1-99>|<1300-1999>) (deny|permit) IPADDR
MASK [IFNAME]
Show
show access-lists [ACLNAME]
Default
Description
This command specifies one or more conditions denied or
permitted to decide if the packet is forwarded or dropped.
Examples
ASUS(config)# access-list 99 permit 1.1.1.1 0.255.255.0
13.2 access-list (<1-99>|<1300-1999>)
(deny|permit) host IPADDR [IFNAME]
Syntax
access-list (<1-99>|<1300-1999>) (deny|permit) host IPADDR
[IFNAME]
Parameters
access-list Add an access list entry