Displaying the acls 5, Figure 245. show access-list command 5, Displaying the acls – Allied Telesis AT-FS970M Series User Manual

AT-FS970M Switch Command Line User’s Guide

1535

Displaying the ACLs

There are several ways of displaying information about ACLs on the
switch. For example, you can use one command to display a list of both
the Numbered IPv4 and Named IPv4 ACLs, and another command to
display only the Named IPv6 ACLs. You can display the port assignments
of all the ACLs and the ACLs assigned to VTY lines. In addition, you can
display the time settings for both the Named IPv4 and IPv6 ACLs. See the
following:



“Displaying IPv4 ACLs” on page 1535



“Displaying IP ACL Port Assignments” on page 1535



“Displaying Named IPv6 ACLs” on page 1536



“Displaying Time Range Information” on page 1536

Displaying IPv4

ACLs

To display the Numbered IPv4 and Named IPv4 ACLs, use the SHOW
ACCESS-LIST command in the Privileged Exec mode. Here is the
command syntax followed by an example display.

awplus# show access-list

Figure 245. SHOW ACCESS-LIST Command

As you can see from the example, the SHOW ACCESS-LIST command
does not display which, if any, ports the ACLs are assigned to. To display
that information, use the SHOW INTERFACE ACCESS-GROUP
command. See “Displaying IP ACL Port Assignments,” next.

Displaying IP

ACL Port

Assignments

To display the IP ACL port assignments for both IPv4 and IPv6 ACLs, use
the SHOW INTERFACE ACCESS-GROUP command in the Privileged
Exec mode. Here is the format of the command:

show interface

port

access-group

IP access-list 3000

permit icmp any any

IP access-list 3104

deny 149.87.201.1 mask 255.255.255.0 any

MAC access-list 4400

permit any any

IP access-list icmppermit

ICMP permit an any time-range daily

IP access-list denytcp

TCP deny 149.55.65.0 mask 255.255.255.0 any time-range NONE

Total number of access-lists= 5