Allied Telesis AT-8100 Series User Manual

AT-8100 Switch Command Line User’s Guide

1591

Mode

Global Configuration mode

Description

Use this command to create access control lists that filter ingress packets
based on UDP port numbers.

Confirmation Commands

“SHOW ACCESS-LIST” on page 1641 and “SHOW INTERFACE
ACCESS-GROUP” on page 1643

Examples

This example creates a Numbered IPv4 ACL, with an ID number of 3118,
that discards all untagged ingress UDP packets on ports 18 and 19:

awplus> enable
awplus# configure terminal
awplus(config)# access-list 3118 deny udp any

range 0 65535

any range 0 65535
awplus(config)# interface port1.0.18,port1.0.19
awplus(config_if)# access-group 3118
awplus(config_if)# end
awplus# show access-list
awplus# show interface port1.0.18,port1.0.19 access-group

This example creates an ACL that discards all tagged ingress packets that
have the source and destination UDP port number 10 and the VID 29. The
ACL is applied to port 17 and assigned the ID number 3091:

awplus> enable
awplus# configure terminal
awplus(config)# access-list 3091 deny udp any

eq 10 any

eq

10 vlan 29
awplus(config)# interface port1.0.17
awplus(config_if)# access-group 3091
awplus(config_if)# end
awplus# show access-list
awplus# show interface port1.0.17 access-group