beautypg.com

Access-list hardware (named), Access-list hardware – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 865

background image

IPv4 Hardware Access Control List (ACL) Commands

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

34.19

access-list hardware (named)

This command creates a named hardware access-list that can be applied to a switch port
interface. ACL filters for a named hardware ACL are created in the IPv4 Hardware ACL
Configuration mode.

The no variant of this command removes the specified named hardware ACL.

Syntax

access-list hardware <hardware-access-list-name>

no access-list hardware <hardware-access-list-name>

Mode

Global Configuration

Default

Any traffic on an interface controlled by a hardware ACL that does not explicitly match a
filter is permitted.

Usage

Use this command to name a hardware ACL and enter the IPv4 Hardware ACL
Configuration mode. If the named hardware ACL doesn't exist, it will be created after
entry. If the named hardware ACL does exist, then you can enter IPv4 Hardware ACL
Configuration mode for that existing ACL.

Entering this command with the hardware ACL name moves you to the (config-ip-
hw-acl

) prompt for the IPv4 Hardware ACL Configuration mode so you can enter ACL

filters with sequence numbers. From this prompt, configure the filters for the ACL. See

Chapter 33, Access Control Lists Introduction

for complete examples of configured

sequenced numbered ACLs.

See also the table

“IPv4 Hardware Access List Commands and Prompts”

in this chapter.

This table shows the relevant prompts at which ACL commands and ACL filters are entered
for sequenced ACLs.

Examples

To create the hardware access-list named ACL-1 and enter the IPv4 Hardware ACL
Configuration mode to specify the ACL filter entry, use the commands:

To remove the hardware access-list named ACL-1, use the commands:

Parameter

Description

<hardware-access-
list-name>

Specify the hardware ACL name to then define ACL filters
for in the subsequent IPv4 Hardware ACL Configuration
mode.

Note

Hardware ACLs will permit access unless explicitly denied by an ACL action.

awplus#

configure terminal

awplus(config)#

access-list hardware ACL-1

awplus(config-ip-hw-acl)#

awplus#

configure terminal

awplus(config)#

no access-list hardware ACL-1

See also other documents in the category Allied Telesis Computer hardware: