beautypg.com

Ip access-list, Access-list – Brocade Network OS Command Reference v4.1.0 User Manual

Page 378

background image

340

Network OS Command Reference

53-1003115-01

ip access-list

2

ip access-list

Creates a standard or extended access control list (ACL) and, once created, configures a set of
rules to define traffic parameters on the ACL.

Synopsis

[ip | ipv6] access-list {standard | extended} [name] [seq number]

no [ip | ipv6] access-list {standard | extended} [name] [seq number]

Operands

ip | ipv6

Specifies the IP type. An ACL can contain rules for only one version of IP
(either IPv4 or IPv6).

standard | extended Specifies one of the following types of IP access lists:

Standard: Contains rules for just only Source IP address. The rules are
applicable to all the ports of that source IP address.

Extended: Contains rules for a combination of IP Protocol, Source IP,
Destination IP, and Destination Port.

name

Specifies the name of the ACL. Each ACL has a unique name. The name
can be up to 63 characters in length, and must begin with an alphanumeric
character. No special characters are allowed, except for the underscore
and hyphen.

[seq | no seq] access list

Specifies the sequence number of the access list. The number must be
from 0 through 4294967290 (applies to both standard and extended
ACLs).

Defaults

None

Command Modes

Global configuration mode

Description

Use this command to create a standard or extended IP ACL.

Usage Guidelines

Each ACL must have a unique name.

An ACL can contain rules for only one version of IP (either IPv4 or IPv6).

Only one ACL for each version of IP (IPv4 or IPv6) can be applied to the Management interface. The
factory default configuration of the switch consists of one IPv4 and one IPv6 address applied to
the Management interface.

A filter (rule) is identified by its unique sequence number and is only part of one ACL. Once the
rules are defined, they cannot be redefined.

Enter no ip access-list or no ipv6 access-list to delete a rule from the ACL.

Examples

To create a standard ACL:

switch(config)# ip access-list standard stdACL3

switch(conf-ip-std)# exit

switch(config)# ip access-list extended extdACL5

switch(config-ip-ext)# exit

switch(config)# no ip access-list standard stdACL3

switch(config)# ipv6 access-list standard stdV6ACL1

switch(config-ipv6-standard)# exit

See also other documents in the category Brocade Computer Accessories: