Ipv4 acls, Access-list rule-mode, Table 4-50 – LevelOne FGL-2870 User Manual
Page 565: Ipv4 acl commands
Access Control List Commands
4-199
4
IPv4 ACLs
The commands in this section configure ACLs based on IP addresses, TCP/UDP
port number, protocol type, and TCP control code. To configure IP ACLs, first create
an access list containing the required permit or deny rules, and then bind the access
list to one or more ports.
access-list rule-mode
This command restricts access lists to only extended rules, or permits both standard
and extended rules. Use the no form to restore the default setting.
Syntax
access-list rule-mode {extended | mixed}
[no] access-list rule-mode
• extended – The system only permits extended rules, each of which
occupies the space of two standard rules.
• mixed – The system permits both standard and extended rules.
Default Setting
Extended mode
Command Mode
Global Configuration
Command Usage
When the rule mode is set to mixed, the following features are not supported:
• When the rule mode is changed, the change must be saved in the startup
configuration file, and the switch rebooted for the new mode to take effect.
• When using extended rule mode, each rule used in an ACL occupies the
space of two standard rules.
Table 4-50 IPv4 ACL Commands
Command
Function
Mode
Page
access-list rule-mode
Permits only extended rules, or permits both standard and
extended rules
GC
access-list ip
Creates an IPv4 ACL and enters configuration mode for
standard or extended IPv4 ACLs
GC
permit, deny
Filters packets matching a specified source IPv4 address
STD-ACL
permit, deny
Filters packets meeting the specified criteria, including
source and destination IPv4 address, TCP/UDP port
number, protocol type, and TCP control code
EXT-ACL
show ip access-list
Displays the rules for configured IPv4 ACLs
PE
ip access-group
Adds a port to an IPv4 ACL
IC
show ip access-group
Shows port assignments for IPv4 ACLs
PE