Specifications
Firewall Configuration 399
Chapter 18
Extended ACLs
Create extended ACLs using the extended option of the access-list
command.
MAC ACLs
Create MAC ACLs using the mac option of the access-list command.
Ethertype ACLs
Create Ethertype ACLs using the eth option of the access-list command.
(Alcatel) (config) #ip access-list extended foo-ext-1
(Alcatel) (config-ext-foo-ext-1)# permit tcp any host 1.1.1.1 range
67 69
(Alcatel) (config-ext-foo-ext-1)#permit icmp 1.1.1.0 0.0.0.255 any
echo-reply
(Alcatel) (config) #ip access-list mac foo-mac-1
(Alcatel) (config-mac-foo-mac-1)# permit host 00:01:01:03:04:05
(Alcatel) (config-mac-foo-mac-1)# permit 00:0a:ff:02:ad:01
ff:ff:ff:00:00:00
(Alcatel) (config) #ip access-list eth foo-eth-1
(Alcatel) (config-eth-foo-eth-1)# permit 2048