Asus GigaX2024SX User Manual

Figure 3-36. Configuring Standard ACLs

CLI – This example configures one permit rule for the specific address 10.1.1.21
and another ru

2.31.x using a

itmask.

le for the address range 168.92.16.x – 168.9

b

Configuring an Extended IP ACL
Command Attributes
• Action – An ACL can contain either all permit rules or all deny rules.
• Source/Destination Address Type – Specifies the source or destination IP
address. Use “Any” to include all possible addresses, “Host” to specify a specific
host address in the Address field, or “IP” to specify a range of addresses with the
Address and SubMask fields. (Options: Any, Host, IP; Default: Any)
• Source/Destination Address – Source or destination IP address.
• Source/Destination Subnet Mask – Subnet mask for source or destination
address. (See the description for Subnet Mask on page 3-80.)
• Service Type – Packet priority settings based on the following criteria:
- Precedence – IP precedence level. (Range: 0-8)
- TOS – Type of Service level. (Range: 0-16)
- DSCP – DSCP priority level. (Range: 0-63)
• Protocol – Specifies the protocol type to match as TCP, UDP or Others, where
others indicates a specific protocol number (0-255). (Options: TCP, UDP, Others;

3-58