14 access-list ace – Interlogix NS3702-24P-4S Command Line Guide User Manual
Page 52
-52-
Command:
access management <AccessId : 1-16> <AccessVid : 1-4095> <AddrRangeStart :
ipv4_addr | ipv6_addr> all | snmp | telnet | to | Web
<AccessId : 1-16>
ID of access management entry
<AccessVid : 1-4095>
The VLAN ID for the access management entry
<AddrRangeStart : ipv4_addr>
Start IPv4 address
<AddrRangeStart : ipv6_addr>
Start IPv6 address
all
All services
snmp
SNMP service
telnet
TELNET/SSH service
to
End address of the range
web
Web service
Default:
access management : disable
Usage Guide:
To enable the access management profile to allow SNMP / Telnet / HTTP services.
Example:
To create a Profile 1 enabling all services for VLAN 1 (IPv6 address 2001::7788) .
Switch# configure terminal
Switch (config)# access management 1 1 2001::7788 all
4.2.14 access-list ace
Command:
access-list ace <AceId : 1-512> action {deny, permit} | dmac-type {any, broadcast,
multicast, unicast} | frametype {any, arp, etype, ipv4, ipv4-icmp, ipv4-tcp, ipv4-udp,
ipv6, ipv6-icmp, ipv6-tcp, ipv6-udp} | ingress {any, interface | GigabitEthernet
<PORT_ID>} | logging {disable, next, policy, rate-limiter, shutdown, tag-priority, vid} |
next {<AceId : 1-512>, last}| policy <PolicyId : 0-255> | rate-limiter {<RateLimiterId :
1-16>, disable} | redirect {disable, interface 10GigabitEthernet | GigabitEthernet
<PORT_ID>} | tag-priority {0-1, 0-3, 2-3, 4-5, 4-7, 6-7, <TagPriority : 0-7>, any} | vid
{<Vid : 1-4095>, any}
<AceId : 1-512>
ACE ID
action
Access list action
dmac-type
The type of destination MAC address