246 ACL Commands
Default Configuration
This command has no default configuration.
Command Mode
Global Configuration mode
User Guidelines
Access list names can consist of any printable character. Names can be up to
31 characters in length.
Examples
The following examples create an ACL to discard any HTTP traffic from
192.168.77.171, but allow all other traffic from 192.168.77.171:
console(config)#access-list alpha deny ip
192.168.77.171 0.0.0.0 0.0.0.0 255.255.255.255 eq
http
console(config)#access-list alpha permit ip
192.168.77.171 0.0.0.0 any
deny | permit (IP ACL)
Use this command in Ipv4-Access-List Configuration mode to create a new
rule for the current IP access list. Each rule is appended to the list of
configured rules for the list.
The command is enhanced to accept the optional time-range parameter. The
time-range parameter allows imposing a time limitation on the IP ACL rule
as defined by the parameter
time-range-name
. If a time range with the
assign-queue
queue-
id
Specifies the particular hardware queue for handling traffic that
matches the rule. (Range: 0-6)
mirror
interface
Allows the traffic matching this rule to be copied to the
specified interface.
redirect
interface
This parameter allows the traffic matching this rule to be
forwarded to the specified unit/slot/port.
Parameter Description
2CSPC4.XModular-SWUM200.book Page 246 Thursday, March 10, 2011 11:18 AM
