Manualshelf

Quick Reference Guide

ManualsBrandsDell ManualsComputer equipmentForce10 S2410-01-10GE-24P
201202203204205206207208209210
202 | Access Control
www.dell.com | support.dell.com
2. Within that mode, use the ip access-group ACLnumber in command to assign the appropriate ACLs (see
Figure 13-160 on page 201). For a configuration example, see Applying an IP ACL to the Loopback
Interface on page 203.
Access Control List Configuration Example
The following example shows how to set up an IP ACL with two rules—one for TCP traffic and one for
UDP traffic. The content of the two rules is the same. TCP and UDP packets will only be accepted by the
switch if the source and destination stations have IP addresses that are within defined sets.
Figure 13-162. ACL Example Network Diagram
1. Create IP ACL 101 and define the first rule. The rule in this example permits packets with a match on
the specified source IP address carrying TCP traffic, and sent to the specified destination IP address.
Figure 13-163. Example of Creating an IP ACL
2. Optionally, define a second rule for IP ACL 101. This rule sets similar conditions for UDP traffic as
for TCP traffic.
Force10 #config
Force10 (Config)#access-list 101 permit tcp 192.168.77.0 0.0.0.255 92.178.77.0 0.0.0.255
Force10 (Config)#