Specifications
VoiceFinder VoIP Gateway Configuration Guide (APOS 2.0) Release Version 3.1
AddPac Technology Co., LTD
- 69 / 416-
[Usage Example] Extended Access-List Configuration
model name(config)# ☞ You can start Access-list Config in this status
model name(config)# access-list 100 deny tcp 140.1.1.0
0.0.0.255 145.1.1.0 0.0.0.255 eq ftp
☞ Deny any TCP packet which
accesses to the host and ftp port with the destination of 145.1.1.0/24Bit from the
source address of 140.1.1.0/24bit.
model name(config)# access-list 100 deny tcp 140.1.1.0
0.0.0.255 145.1.1.0 0.0.0.255 eq ftp-data
☞ Deny any TCP packet
which accesses to the host and ftp-data port with the destination of
145.1.1.0/24Bit from the source address of 140.1.1.0/24bit.
model name(config)# access-list 100 permit tcp 140.1.1.0
0.0.0.255 145.1.1.0 0.0.0.255 eq ftp
☞ Permit only the TCP packet
configured with Session which accesses to the host and ftp port with the
destination of 145.1.1.0/24Bit from the source address of 140.1.1.0/24bit
model name(config)# access-list 100 permit ip any any ☞ Permit
all the other IP packets except the condition stated above
model name(config)# interface FastEthernet 0/0 ☞ Enter to
interface FastEthernet 0/0
model name(config-if)# ip access-group 100 in ☞ Apply
access-list100 to all the IP packets coming through Ethernet 0.0 interface
model name(config-if)# end
model name # show ip access-list 100
☞ Display the configured
access-list100
Extended IPaccess List 100
deny tcp 140.1.1.0 0.0.0.255 145.1.1.0 0.0.0.255 eq ftp
deny tcp 140.1.1.0 0.0.0.255 145.1.1.0 0.0.0.255 eq ftp-data
deny tcp 140.1.1.0 0.0.0.255 145.1.1.0 0.0.0.255 eq ftp
permit ip any any