Specifications
Security Configuration Command Set
Configuring Access Lists
14-108 Matrix E1 Series (1G58x-09 and 1H582-xx) Configuration Guide
14.3.7.4 ip access-group
Use this command to apply access restrictions on an interface when operating in router mode.
ip access-group access-list-number {in | out}
Syntax Description
Command Syntax of the “no” Form
The “no” form of this command removes the specified access list:
no ip access-group access-list-number {in | out}
Command Type
Router command.
Command Mode
Interface configuration: Matrix>Router(config-if(Vlan <vlan_id>))#
Command Defaults
None.
Example
This example shows how to apply access list 1 for all inbound packets on VLAN 1. Through the
definition of access list 1, only packets with destination 192.5.34.0 will be routed. All the packets
with other destination received on VLAN 1 are dropped:
ROUTER: This command can be executed when the device is in router mode only. For
details on how to enable router configuration modes, refer to Section 3.3.3.
access-list-number Specifies the number of the access list to be applied to the
access list. This is a decimal number from 1 to 199.
in Filters inbound packets.
out Filters outbound packets.
Matrix>Router(config)#access-list 1 permit 192.5.34.0 0.0.0.255
Matrix>Router(config)#interface vlan 1
Matrix>Router(config-if(Vlan 1))#ip access-group 1 in