ES4710BD 10 Slots L2/L3/L4 Chassis Switch

Command: firewall default {permit deny}

Function: sets firewall default action.

Parameters: permit” allows packets to pass through; “deny” blocks packets.

Command mode: Global Mode

Default: The default action is “permit”.

Usage Guide: This command affects incoming IP packets on the port only, other packets are allowed to pass through the switch.

Example: setting firewall default action to block packets. Switch(Config)#firewall default deny

12.2.2.5ip access extended

Command: ip access extended <name> no ip access extended <name>

Function: Creates a name-based extended IP access list; the “no ip access extended <name>” command delete the name-based extended IP access list

Parameters: <name> is the name for access list, the character string length is 1 – 8, a pure digit sequence is not allowed.

Command mode: Global Mode

Default: No IP address is configured by default.

Usage Guide: When this command is run for the first time, only an empty access list with no entry will be created.

Example: Creating an extensive IP access list named “tcpFlow”. Switch(Config)#ip access list extended tcpFlow

12.2.2.6ip access standard

Command: ip access standard <name> no ip access standard <name>

Function: Creates a name-based standard IP access list; the “no ip access standard <name>” command delete the name-based standard IP access list (including all entries).

Parameters: <name> is the name for access list, the character string length is 1 – 8.

Command mode: Global Mode

Default: No IP address is configured by default.

Usage Guide: When this command is run for the first time, only an empty access list with no entry will be created.

Example: Creating a standard IP access list named “ipFlow”. Switch(Config)#ip access list standard ipFlow

12.2.2.7ip access-group

273

Page 274
Image 274
Accton Technology ES4710BD Ip access extended, Ip access standard, Ip access-group, Command firewall default permit deny