Configuring a standard ip acl, Figure 3-66, Selecting acl type – Accton Technology Edge-corE Fast Ethernet Switch ES3528M-SFP User Manual

Access Control Lists

3-101

3

Figure 3-66 Selecting ACL Type

CLI – This example creates a standard IP ACL named david.

Configuring a Standard IP ACL

Command Attributes
• Action – An ACL can contain any combination of permit or deny rules.
• Address Type – Specifies the source IP address. Use “Any” to include all possible

addresses, “Host” to specify a specific host address in the Address field, or “IP” to
specify a range of addresses with the Address and SubMask fields. (Options: Any,
Host, IP; Default: Any)

• IP Address – Source IP address.
• Subnet Mask – A subnet mask containing four integers from 0 to 255, each

separated by a period. The mask uses 1 bits to indicate “match” and 0 bits to
indicate “ignore.” The mask is bitwise ANDed with the specified source IP address,
and compared with the address for each IP packet entering the port(s) to which this
ACL has been assigned.

Web – Specify the action (i.e., Permit or Deny). Select the address type (Any, Host,
or IP). If you select “Host,” enter a specific address. If you select “IP,” enter a subnet
address and the mask for an address range. Then click Add.

Console(config)#access-list ip standard david

4-140

Console(config-std-acl)#