User Manual

ManualsBrandsYamaha ManualsProfessional AudioL2 Gigabit Dante Switch

171

172

173

174

175

176

177

178

179

180

ID of extended IPv4 access list to which a comment will be added

line : Comment to add. Up to 32 ASCII characters can be specified.

[Initial value]

none

[Input mode]

global configuration mode

[Description]

Adds a comment (remark) to the already-generated extended IPv4 access list.

If this command is executed with the "no" syntax, the comment is deleted from the extended IPv4 access list.

[Note]

You can use this command to add a comment even after the access list has been applied to the LAN/SFP port. (The last-written

comment overwrites the previous one.)

[Example]

Create access list #100 that permits communication from source segment 192.168.1.0/24 to destination 172.16.1.1, and add the

comment "Test."

SWP1(config)#access-list 100 permit any 192.168.1.0 0.0.0.255 host 172.16.1.1

SWP1(config)#access-list 100 remark Test

13.1.6 Apply extended IPv4 access list

[Syntax]

ip access-group ext-ip-acl-id direction

no ip access-group ext-ip-acl-id direction

[Parameter]

ext-ip-acl-id : <100-199>, <2000-2699>

ID of extended IPv4 access list to apply

direction : Specifies the direction of applicable frames

Setting value Description

in Apply to received frames

out Apply to transmitted frames

[Initial value]

none

[Input mode]

interface mode

[Description]

Applies an extended IPv4 access list to the LAN/SFP port.

If the received/transmitted frame matches the conditions in the access list, the action in the access list will be the action (permit,

deny) for the corresponding frame.

If this command is executed with the "no" syntax, the applied access list is deleted from the LAN/SFP port.

[Note]

The restrictions of the access list apply only to frames that are subject to being relayed. Frames that are transmitted

autonomously are excluded from these restrictions.

It is not possible to register multiple access lists for a single interface.

Access lists can be applied only to LAN/SFP ports. (Logical interfaces are not supported.)

As a restriction, an extended IPv4 access list for which the port number range (range X Y) is specified cannot be applied to

transmitted frames (out).

[Example]

Apply extended IPv4 access list #100 to received frames of LAN port #1.

Command Reference | Traffic control | 171