Reference Guide

ManualsBrandsDell ManualsComputer equipmentNetworking Z9500

181

182

183

184

185

186

187

188

189

190

Version Description

8.3.19.0 Introduced on the S4820T.

8.3.11.1 Introduced on the Z9000.

8.3.10.0 Introduced on the S4810.

8.1.1.0 Introduced on the E-Series ExaScale.

7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names

were up to 16 characters long.

7.6.1.0 Introduced on the S-Series.

7.5.1.0 Introduced on the C-Series.

6.2.1.1 Introduced on the E-Series.

Usage

Information

The number of entries allowed per ACL is hardware-dependent. For detailed information on the number

entries allowed per ACL on the Z9500, refer to the Content Addressable Memory (CAM) chapter in the

Z9500 Configuration Guide.

If you configure an extended IP ACL to be used only to filter protocol traffic for CoPP, you must enter the

keyword cpu-qos.

Example

Dell(conf)#ip access-list extended TESTListEXTEND

Dell(config-ext-nacl)#

Commands

ip access-list standard — configures a standard IP access list.

show config — displays the current configuration.

permit

To pass IP packets meeting the filter criteria, configure a filter.

Z9500

Syntax

permit {source mask | any | host ip-address} {destination mask | any | host

ip-address} [count [bytes]] [dscp value] [order] [fragments] [log [interval

minutes] [threshold-in-msgs [count]] [monitor]

To remove this filter, you have two choices:

● Use the no seq sequence-number command if you know the filter’s sequence number.

● Use the no deny {source mask | any | host ip-address} {destination mask |

any | host ip-address} command.

Parameters

source

Enter the IP address in dotted decimal format of the network from which the

packet was sent.

mask

(OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask,

when specified in A.B.C.D format, may be either contiguous or non-contiguous.

any Enter the keyword any to specify that all routes are subject to the filter.

host

ip-address

Enter the keyword host then the IP address to specify a host IP address or

hostname.

destination

Enter the IP address of the network or host to which the packets are sent.

count (OPTIONAL) Enter the keyword count to count packets processed by the filter.

bytes (OPTIONAL) Enter the keyword bytes to count bytes processed by the filter.

Access Control Lists (ACL) 185