Manualshelf

User`s manual

ManualsBrandsAsante ManualsComputer equipmentIntraCore 36000 Series
171172173174175176177178179180
User’s Manual 177
ip access-group
show ip access-list
16.2 access-list ip mask-precedence
This command changes to the IP Mask mode used to configure access control masks. Use the no form to
delete the mask table.
Syntax Description
[no] access-list ip mask-precedence {in | out}
In Ingress mask for ingress ACLs.
Out Egress mask for egress ACLs.
Default
Default system mask: Filter inbound packets according to specified IP ACLs.
Command Mode
Global Configuration
Usage Guidelines
A mask can only be used by all ingress ACLs or all egress ACLs.
The precedence of the ACL rules applied to a packet is not determined by order of the rules, but instead by
the order of the masks; For example, the first mask that matches a rule will determine the rule that is applied
to a packet.
You must configure a mask for an ACL rule before you can bind it to a port or set the queue or frame
priorities associated with the rule.
Example
The following is sample output from the access-list command with the ip mask-precedence argument.
Console(config)#access-list ip mask-precedence in
Console(config-ip-mask-acl)#
Related Commands
mask (IP ACL)
ip access-group
16.3 access-list mac
This command adds a MAC access list and enters MAC ACL configuration mode. Use the no form to
remove the specified ACL.