Ble 163. permit acls ipv4 packets example 1 – Allied Telesis AT-8100 Series User Manual

AT-8100 Switch Command Line User’s Guide

1531

Note

The permit ACLS are added to the ports before the deny ACL to
ensure that packets are compared against them first.

Table 163. Permit ACLs IPv4 Packets Example

Command

Description

awplus> enable

Enter the Privileged Executive
mode from the User Executive
mode.

awplus# configure terminal

Enter the Global Configuration
mode.

awplus(config)# access-list 3021
permit ip 149.124.242.52/32 any

awplus(config)# access-list 3022
permit ip 149.124.242.53/32 any

awplus(config)# access-list 3023
permit ip 149.124.242.54/32 any

Create the three permit ACLs with
the ACCESS-LIST command.

awplus(config)# access-list 3018 deny
ip any any

Create the deny ACL.

awplus(config)# interface port1.0.21,
port1.0.22

Move to the Port Interface mode
for ports 21 and 22.

awplus(config_if)# access-group 3021
awplus(config_if)# access-group 3022
awplus(config_if)# access-group 3023
awplus(config_if)# access-group 3018

Add the ACLs to the port with the
ACCESS-GROUP command,
being sure to add the permit ACLs
first so that ingress packets are
compared against them first.

awplus(config_if)# end

Return to the Privileged Exec
mode.

awplus# show access-list

Confirm the configuration of the
ACLs.

awplus# show interface
port1.0.21,port1.0.22 access-group

Confirm that the ACLs have been
added to the port.