5 ip access extended, 6 ip access standard, 7 ip access-group – Accton Technology ES4710BD User Manual

273

E

ES4710BD 10 Slots L2/L3/L4 Chassis Switch

Command: firewall default {permit | deny}

Function: sets firewall default action.

Parameters: “permit” allows packets to pass through; “deny” blocks packets.

Command mode: Global Mode

Default: The default action is “permit”.

Usage Guide: This command affects incoming IP packets on the port only, other packets are

allowed to pass through the switch.

Example: setting firewall default action to block packets.

Switch(Config)#firewall default deny

12.2.2.5 ip

access

extended

Command: ip access extended

no ip access extended

Function: Creates a name-based extended IP access list; the “no ip access extended ”

command delete the name-based extended IP access list

Parameters: is the name for access list, the character string length is 1 – 8, a pure digit

sequence is not allowed.

Command mode: Global Mode

Default: No IP address is configured by default.

Usage Guide: When this command is run for the first time, only an empty access list with no entry

will be created.

Example: Creating an extensive IP access list named “tcpFlow”.

Switch(Config)#ip access list extended tcpFlow

12.2.2.6 ip access standard

Command: ip access standard

no ip access standard

Function: Creates a name-based standard IP access list; the “no ip access standard ”

command delete the name-based standard IP access list (including all entries).

Parameters: is the name for access list, the character string length is 1 – 8.

Command mode: Global Mode

Default: No IP address is configured by default.

Usage Guide: When this command is run for the first time, only an empty access list with no entry

will be created.

Example: Creating a standard IP access list named “ipFlow”.
Switch(Config)#ip access list standard ipFlow

12.2.2.7 ip

access-group