Users Guide
• For a VLAN interface, enter the keyword vlan followed by the slot/port
number.
• For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet
followed by the slot/port information.
• For a Port Channel interface, enter the keyword port-channel followed by a
number. For the C-Series and S-Series, the range is 1 to 128. For the E-Series,
the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale.
• For a SONET interface, enter the keyword sonet followed by the slot/ port
information.
• For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet followed by the slot/port information.
• For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed
by the slot/port information.
in | out Identify whether ACL is applied on the ingress or egress side.
vrf vrf-name Enter the keyword vrf and then the name of the VRF to display the access-lists
that are congured on either the default or non-default VRFs.
Command Modes EXEC Privilege
Command History
Version Description
9.4.(0.0) Added support for VRF.
8.5.1.0 Added support for the 4-port 40G line cards on ExaScale.
8.3.19.0 Introduced on the S4820T.
8.3.11.1 Introduced on the Z9000.
8.3.7.0 Introduced on the S4810.
Example
Dell#show ip access-lists L3-ACL vrf VRF2 in
Standard Ingress IP access list L3-ACL on VRF2
seq 5 permit 10.1.2.0/24
seq 10 permit 20.1.2.0/24
Dell#show ip access-lists vrf VRF2 in
Standard Ingress IP access list L3-ACL
seq 5 permit 10.1.2.0/24
seq 10 permit 20.1.2.0/24
Dell#show ip access-lists test in
Standard Ingress IP access list test
seq 5 permit 1.1.1.0/24 count (0 packets)
seq 10 deny 2.1.1.0/24 count (0 packets)
Standard IP ACL Commands
When you create an ACL without any rule and then apply it to an interface, the ACL behavior reects an implicit permit.
The platform supports both Ingress and Egress IP ACLs.
NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands sections.
Access Control Lists (ACL)
201