beautypg.com

Asante Technologies 35516 User Manual

Page 69

background image

- 69 -

icmp Specify ICMP connections
tcp Specify TCP connections
udp Specify UDP connections
Router(config)# access-list 101 deny tcp ?
A.B.C.D Source address to match. e.g. 10.0.0.0
host Host address to match.
any Any source address to match
Router(config)# access-list 101 deny tcp 192.168.123.0 0.0.0.255 ?
A.B.C.D Destination address to match. e.g. 10.0.0.0
host Host address to match.
any Any destination address to match
Router(config)# $ist 101 deny tcp 192.168.123.0 0.0.0.255 192.168.124.0 ?
eq Operator - equal to
gt Operator - greater then
lt Operator - less then
neq Operator - NOT equal to

Router(config)# $ list 101 deny tcp 192.168.123.0 0.0.0.255 192.168.124.0 eq ?
<0-65535> Protocol port number
Router(config)# $ eny tcp 192.168.123.0 0.0.0.255 192.168.124.0 0.0.0.255 eq 21
Router(config)# $ eny tcp 192.168.123.0 0.0.0.255 192.168.124.0 0.0.0.255 eq 20
Router(config)# $ permit ip 192.168.123.0 0.0.0.255 0.0.0.0 255.255.255.255
Router(config)# exit
Router# show access-list

5.6.3 Creating an Access List with a Name

From the global configuration mode, you can also create access lists through the Router(config)# ip command.
Through this method, you may name your access list, rather than using a number. The new prompt reflects the
named access list mode.

Router(config)# ip ?
access-list Named access-list
forward-protocol Controls forwarding of physical and directed IP
prefix-list Build a prefix list
route Establish static routes
Router(config)# ip access-list ?
standard Standard Access List
extended Extended Access List
Router(config)# ip access-list standard ?
WORD Access-list name or Standard IP access-list number <1-99>
Router(config)# ip access-list standard test
Router(config-std-nacl)# ?
deny Specify packets to reject
end End current mode and change to enable mode
exit Exit current mode and down to previous mode
help Description of the interactive help system
no Negate a command or set its defaults
permit Specify packets to forward
quit Exit current mode and down to previous mode
remark Access list entry comment
Router(config-std-nacl)#

At the Router(config-std-nacl)# prompt, you may proceed with the access list permit or deny statements.

See also other documents in the category Asante Technologies Computer Accessories: