Hub/Switch Reference Guide
474 Security ACL Commands
NN47250-100 (Version 02.51)
set security acl ip acl_123 (hits #5 462)
---------------------------------------------------------
1. permit IP source IP 192.168.1.11 0.0.0.255 destination IP any enable-hits
2. deny IP source IP 192.168.2.11 0.0.0.0 destination IP any
set security acl ip acl_134 (hits #3 0)
---------------------------------------------------------
1. permit IP source IP 192.168.0.1 0.0.0.0 destination IP any enable-hits
set security acl ip acl_135 (hits #2 0)
---------------------------------------------------------
1. deny IP source IP 192.168.1.1 0.0.0.0 destination IP any enable-hits
The following command displays the contents of acl_123 in the edit buffer, including the committed ACE rules 1 and 2
and the uncommitted rule 3:
WSS# show security acl info acl_123 editbuffer
ACL edit-buffer information for acl_123
set security acl ip acl_123 (ACEs 3, add 3, del 0, modified 0)
---------------------------------------------------------
1. permit IP source IP 192.168.1.11 0.0.0.255 destination IP any enable-hits
2. deny IP source IP 192.168.2.11 0.0.0.0 destination IP any
3. deny SRC source IP 192.168.1.234 255.255.255.255 enable-hits
See Also
• clear security acl on page 449
• commit security acl on page 452
• set security acl on page 454
show security acl map
Displays the VLANs, ports, and virtual ports on the WSS to which a security ACL is assigned.
Syntax
show security acl map acl-name
Defaults
None.
Access
Enabled.
Examples
The following command displays the port to which security ACL acl_111 is mapped:
WSS# show security acl map acl_111
ACL acl_111 is mapped to:
Port 4 in
acl-name Name of an existing security ACL for which to show static mapping.
ACL names must start with a letter and are case-insensitive.