Installation manual
4-174
SIGNAMAX LLC • www.signamax.eu
Access Control List Commands
Access Control Lists (ACL) provide packet filtering for IP frames (based on address,
protocol, or Layer 4 protocol port number or TCP control code) or any frames (based on
MAC address or Ethernet type). To filter packets, first create an access list, add the
required rules and then bind the list to a specific port. This section describes the Access
Control List commands.
IP ACLs
The commands in this section configure ACLs based on IP addresses, TCP/UDP port
number, protocol type, and TCP control code. To configure IP ACLs, first create an
access list containing the required permit or deny rules, and then bind the access list to
one or more ports.
Table 4-46 Access Control Lists
Command Groups Function Page
IP ACLs Configures ACLs based on IP addresses, TCP/UDP port number, and
protocol type
4-174
MAC ACLs Configures ACLs based on hardware addresses, packet format, and
Ethernet type
4-180
ACL Information Displays ACLs and associated rules; shows ACLs assigned to each port 4-185
Table 4-47 IP ACLs
Command Function Mode Page
access-list ip Creates an IP ACL and enters configuration mode for
standard or extended IP ACLs
GC 4-175
permit, deny Filters packets matching a specified source IP address STD-ACL 4-176
permit, deny Filters packets meeting the specified criteria, including
source and destination IP address, TCP/UDP port number,
protocol type, and TCP control code
EXT-ACL 4-177
show ip access-list Displays the rules for configured IP ACLs PE 4-179
ip access-group Adds a port to an IP ACL IC 4-179
show ip access-group Shows port assignments for IP ACLs PE 4-179