Reference Guide
162 Management ACL Commands
FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\CLI Folders\Dell Plasma-ARC
2+3\new_system_mifs_ARC2_latest\Management_ACL.fm
DELL CONFIDENTIAL – PRELIMINARY 4/3/14 - FOR PROOF ONLY
For IPv6 management traffic that is tunneled in IPv4 packets, the
management ACL is applied first on the external IPv4 header (rules with the
service field are ignored), and then again on the inner IPv6 header.
Example
Example 1 - The following example creates a management access list called
mlist, configures management gi0/1 and gi0/2, and makes the new access list
the active list.
console(config)#
management access-list
mlist
console(config-macl)# switch
permit
gi0/1
console(config-macl)# switchpermit gi0/2
console(config-macl)# switch
exit
console(config)#
management access-class
mlist
Example 2 - The following example creates a management access list called
‘mlist’, configures all interfaces to be management interfaces except gi0/
1
and
gi0/2, and makes the new access list the active list.
console(config)#
management access-list
mlist
console(config-macl)# switch
de
ny gi0/1
console(config-macl)# switchdeny gi0/2
console(config-macl)# switch
permit
console(config-macl)# switch
exit
console(config)#
management access-class
mlist
permit (Management)
The permit Management Access-list Configuration mode command sets
permit rules (ACEs) for the management access list (ACL).
Syntax
permit
[interface-id] [service service]
permit ip-source {
ipv4-address
|
ipv6-address
/
ipv6-prefix-length
}
[mask
{mask | prefix-length}] [interface-id] [service service]