Ip access-list – Avaya C460 User Manual

Chapter 2 Avaya C460 CLI Commands

38

Avaya C460 Reference Guide

ip access-list

User level: read-write, admin.
L If you are at the ”read-write” user level, you can only access this command in

Configure mode.
Type configure at the command prompt to enter configure mode if necessary.

Use the ip access list command to create a specific policy rule. The access list
contains several of these rules: each rule pertains to the source IP address, the
destination IP address, the protocol, the protocol ports (if relevant), and to the ACK
bit (if relevant).
Use the no ip access list command to delete a specific rule.

The syntax for this command is:

[no] ip access-list

<policy-list-number> <access-list-index>

<action> <protocol> {<source-ip> <source-wildcard> | any |

host <source-ip>}[<operator> <port> [<port]]

{<destination-ip> <destination-wildcard> | any |

host <destination-ip>}[<operator> <port> [<port>]]

[established] [precedence]

<access-list-number>

integer (100 to 149)
0 is the default list

<access-list-index>

integer (1 to 254)

<command>

permit | deny | deny-and-notify | fwd0-7 |
composite op name

<protocol>

ip | tcp | udp | integer (1 to 255)

<source-ip>

ip network

<source-wildcard>

ip network wildcard

<operator>

eq | lt | gt | range

<port>

integer (1 to 65535)

<destination-ip> ip

network

<destination-wildcard>

ip network wildcard

<precedence>

mandatory | optional]