Asus GigaX3124 User Manual

GigaX3124 Layer3 Switch CLI Command Reference

116

13.26 access-list (<100-199>|<2000-2699>)

(deny|permit) (tcp|udp) any [eq] [<0-65535>]

host IPADDR [eq] [<0-65535>] [IFNAME]

Syntax

access-list (<100-199>|<2000-2699>) (deny|permit) (tcp|udp)

any [eq] [<0-65535>] host IPADDR [eq] [<0-65535>] [IFNAME]

Parameters

access-list Add an access list entry

<100-199> Extended IP access-list number

<2000-2699> Extended IP access-list number (expanded

range)

permit Specify packets to forward

deny Specify packets to reject.

tcp Transmission Control Protocol

udp User Datagram Protocol

any Any Source host

eq Match only packets on a given port numbe

<0-65535> Port number

host A single destination host

IPADDR Destination address

eq Match only packets on a given port numbe

<0-65535> Port number

[IFNAME] Egress interface name

Command Mode Global configuration mode
No/clear

no access-list (<100-199>|<2000-2699>) (deny|permit) (tcp|udp)

any [eq] [<0-65535>] host IPADDR [eq] [<0-65535>] [IFNAME]

Show

show access-lists [ACLNAME]

Default
Description

This command specifies one or more conditions denied or

permitted to decide if the packet is forwarded or dropped.

Examples

ASUS(config)# access-list 100 permit tcp any eq 21 host 1.1.1.1

eq 22