26 show access-group, Show access, Group – PLANET XGS3-24040 User Manual

Commands for Security Function Chapter 2 Commands for 802.1x

41-20

Deny any IP packets to pass

access-list 100(used 1 time(s))

Nnumber ACL10, 1 time to be used

access-list 100 deny ip any any-destination

Deny IP packet of any source IP address and destination address to pass

access-list 100 deny tcp any any-destination

Deny TCP packet of any source IP address and destination address to pass

access-list 1100 permit any-source-mac any-destination-mac tagged-eth2 14 2 0800

Permit tagged-eth2 with any source MAC addresses and any destination MAC addresses and the

packets whose 15th and 16th byte is respectively 0x08 , 0x0 to pass.

access-list 3100 permit any-source-mac any-destination-mac udp any s-port 100 any-destination

d-port 40000

Deny the passage of UDP packets with any source MAC address and destination MAC address,

any source IP address and destination IP address, and source port 100 and destination interface

40000

41.26 show access-group

Command: show access-group [interface {ethernet IFNAME| vlan <1-4094>]

Functions: Reveal tying situation of ACL on port.

Parameters: IFNAME, Interface name. <1-4094 > Vlan ID.

Default: None.

Command Mode: Admin and Configuration Mode.

Usage Guide: When not assigning interface names, all ACL tied to port will be revealed.

Examples:

Switch#show access-group

interface name: Ethernet 1/1

IP Ingress access-list used is 100, traffic-statistics Disable.

Interface VLAN 100:

Ethernet1/4: IP Ingress access-list used is 100, packet(s) number is 0.

Ethernet1/5: IP Ingress access-list used is 100, packet(s) number is 0.

Ethernet1/6: IP Ingress access-list used is 100, packet(s) number is 0.

Displayed information

Explanation

interface name: Ethernet 1/1