beautypg.com

Command list, Access-list extended (named), Command list access-list extended (named) – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 890

background image

IPv4 Software Access Control List (ACL) Commands

Software Reference for x310 Series Switches

35.4

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

Command List

access-list extended (named)

This command configures an extended named access-list that permits or denies packets
from specific source and destination IP addresses. You can either create an extended
named ACL together with an ACL filter entry in the Global Configuration mode, or you can
use the IPv4 Extended ACL Configuration mode for sequenced ACL filter entry after
entering a list name.

The no variant of this command removes a specified extended named access-list.

Syntax

[list-name]

access-list extended <list-name>

no access-list extended <list-name>

Syntax

[icmp]

access-list extended <list-name>

{deny|permit}

icmp <source> <destination>

[icmp-type <type-number>]

[log]

no access-list extended <list-name>

{deny|permit}

icmp <source> <destination>

[icmp-type <type-number>]

[log]

Parameter

Description

<list-name>

A user-defined name for the access-list

Table 35-2: Parameters in the access-list extended (named) command - icmp

Parameter

Description

<list-name>

A user-defined name for the access-list.

deny

The access-list rejects packets that match the type, source, and
destination filtering specified with this command.

permit

The access-list permits packets that match the type, source, and
destination filtering specified with this command.

icmp

The access-list matches only ICMP packets.

icmp-type

Matches only a specified type of ICMP messages. This is valid only
when the filtering is set to match ICMP packets.