Displaying acl definitions – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual
Page 136
118
Multi-Service IronWare Security Configuration Guide
53-1003035-02
Configuring numbered and named ACLs
3
NOTE
The command prompt changes after you enter the ACL type and name. The “ext” in the command
prompt indicates that you are configuring entries for an extended ACL. The “nacl” indicates that are
configuring a named ACL.
To re-sequence a named extended ACL table, enter the following command:
Brocade(config-ext-nacl-block telnet)# regenerate-seq-num
Syntax: [no] ip access-list extended string | num
Syntax: [no] [sequence num] deny | permit [vlan vlan-id]
ip-protocol {source-ip | hostname wildcard | any}
[operator source-tcp/udp-port]
{destination-ip | hostname wildcard | any}
[operator destination-tcp/udp-port]
[icmp-type] [established] [precedence {name | num}]
[tos {name | number}] [dscp-mapping number ]
[dscp-marking number] | [{fragment | non-fragment }]
[option value | name | keyword]
[priority priority-value | priority-force priority-value | priority-mapping priority-value]
[mirror
Syntax: regenerate-seq-num [num]
Syntax: [no] ip access-group string | num in I out
The options at the ACL configuration level and the syntax for the ip access-group command are the
same for numbered and named ACLs and are described in
“Configuring extended numbered ACLs”
Displaying ACL definitions
To display the ACLs configured on a Brocade device, use the show access-list command.
To display the total number of Layer-2 and IPv4 access lists and the number of filters configured for
each list, use the show access-list count command.
Brocade(config)#show access-list count
Total 4 ACLs exist.
ACL 102, total 10 clauses
ACL 105, total 15 clauses
ACL 400, total 100 clauses
ACL 401, total 2 clauses
NOTE
Empty ACLs that are applied to interfaces are included in the total ACL count but are not displayed.
For a numbered ACL, you can enter a command such as the following.