24-Port Layer 3 Switch Management Guide
C
OMMAND
L
INE
I
NTERFACE
4-76
IP ACLs
access-list ip
Use this command to add an IP access list and enter configuration mode
for standard or extended IP ACLs. Use the no form to remove the
specified ACL.
Syntax
access-list ip {standard | extended} acl_name
no access-list ip {standard | extended} acl_name
• standard – Specifies an ACL that filters packets based on the source
IP address.
Command
Groups
Function Page
IP ACLs Configures ACLs based on IP addresses, TCP/UDP
port number, protocol type, and TCP control code
4-76
MAC ACLs Configures ACLs based on hardware addresses,
packet format, and Ethernet type
4-84
ACL Information Displays ACLs and associated rules; shows ACLs
assigned to each port
4-89
Command Function Mode Page
access-list ip Creates an IP ACL and enters configuration
mode
GC 4-76
permit, deny Filters packets matching a specified source IP
address
STD-
ACL
4-78
permit, deny Filters packets meeting the specified criteria,
including source and destination IP address,
TCP/UDP port number, protocol type, and
TCP control code
EXT-
ACL
4-79
ip access-group Adds a port to an IP ACL IC 4-81
show ip
access-group
Shows port assignments for IP ACLs PE 4-81
show ip access-list Displays the rules for configured IP ACLs PE 4-83