CLI (Command Line Interface)

 

 

IP ACL Commands (Cont.)

 

 

 

Command

Function

 

 

show ip access-list

Syntax:

This command displays the rules

show ip access-list {standard extended} [acl_name]

for configured IP ACLs.

• standard – Specifies a standard IP ACL.

 

• extended – Specifies an extended IP ACL.

 

• acl_name – Name of the ACL. (Maximum length: 16 characters)

 

Command Mode: Privileged Exec

 

Example:

 

Console#show ip access-list standard

 

IP standard access-list david:

 

permit host 10.1.1.21

 

permit 168.92.0.0 255.255.255.0

 

Console#

 

 

access-list ip mask-precedence

Syntax:

This command changes to the IP

[no] access-list ip mask-precedence {in out}

Mask mode used to configure

• in – Ingress mask for ingress ACLs.

access control masks.

• out – Egress mask for egress ACLs.

Use the no form to delete the

Default Setting: Default system mask: Filter inbound packets according to

mask table.

specified IP ACLs.

 

Command Mode: Global Configuration

 

Command Usage: A mask can only be used by all ingress ACLs or all

 

egress ACLs.

 

The precedence of the ACL rules applied to a packet is not determined by

 

order of the rules, but instead by the order of the masks; i.e., the first mask

 

that matches a rule will determine the rule that is applied to a packet.

 

You must configure a mask for an ACL rule before you can bind it to a port

 

or set the queue or frame priorities associated with the rule.

 

Example:

 

Console(config)#access-list ip mask-precedence in

 

Console(config-ip-mask-acl)#

 

 

mask

Syntax:

(IP ACL)

[no] mask [protocol]

This command defines a mask for

{any host source-bitmask}

{any host destination-bitmask}

IP ACLs.

[precedence] [tos] [dscp]

This mask defines the fields to

[source-port [port-bitmask]] [destination-port [port-

bitmask]]

check in the IP header.

[control-flag [flag-bitmask]]

Use the no form to remove a

• protocol – Check the protocol field.

mask.

• any – Any address will be matched.

 

 

• host – The address must be for a host device, not a subnetwork.

 

source-bitmask – Source address of rule must match this bitmask.

 

destination-bitmask – Destination address of rule must match this

 

bitmask.

 

• precedence – Check the IP precedence field.

 

• tos – Check the TOS field.

 

• dscp – Check the DSCP field.

 

source-port – Check the protocol source port field.

 

destination-port – Check the protocol destination port field.

 

port-bitmask – Protocol port of rule must match this bitmask. (Range: 0-

 

65535)

 

control-flag – Check the field for control flags.

 

flag-bitmask – Control flags of rule must match this bitmask. (Range: 0-

 

63)

 

Default Setting: None

 

Command Mode: IP Mask

 

 

NXA-ENET24 - Software Management Guide

213

 

 

Page 233
Image 233
AMX NXA-ENET24 manual Command Function Show ip access-list Syntax, Mask Syntax, Command Mode IP Mask

NXA-ENET24 specifications

The AMX NXA-ENET24 is a versatile and powerful networked control interface designed to meet the growing demands of modern AV systems. This network switch offers an exceptional combination of reliability, performance, and scalability, making it an ideal choice for professional environments such as conference rooms, educational facilities, and control rooms.

One of the key features of the NXA-ENET24 is its 24-port configuration, allowing for extensive connectivity options. Each port supports 10/100/1000 Mbps speeds, ensuring that high bandwidth applications are handled with ease. Additionally, the switch incorporates advanced auto-negotiation technology, which automatically configures the optimal speed and duplex mode for connected devices. This ensures seamless connectivity and minimizes the risk of network disruptions.

The NXA-ENET24 is designed with advanced management capabilities, including support for VLANs, which helps to segment network traffic for enhanced security and performance. Network administrators can easily create virtual local area networks to optimize traffic flow and reduce congestion. This feature is particularly beneficial in environments where multiple AV systems operate concurrently.

Another significant characteristic of the NXA-ENET24 is its support for Power over Ethernet, or PoE. This feature enables the switch to deliver electrical power alongside data through the network cables. As a result, devices such as IP cameras, VoIP phones, and wireless access points can be powered directly from the switch, simplifying deployment and reducing the need for additional power sources.

Monitoring and management of the switch are made easier through a user-friendly interface. The NXA-ENET24 supports SNMP for network management, allowing users to monitor performance metrics, configure settings, and receive alerts in case of issues. This level of oversight is crucial for maintaining the stability of AV systems in mission-critical applications.

Durability is another hallmark of the NXA-ENET24 design. The switch features a robust chassis that is engineered to withstand the rigors of professional use. With cooling mechanisms in place and a fanless design, the NXA-ENET24 operates quietly and efficiently, making it suitable for environments where noise is a concern.

In conclusion, the AMX NXA-ENET24 is a powerful, reliable, and feature-rich network switch that effectively supports modern AV applications. With its extensive connectivity options, advanced management capabilities, PoE support, and durable design, it is an excellent choice for integrators and organizations looking to optimize their network infrastructure.