Chapter 2 Avaya C460 CLI Commands

ip access-list

User level: read-write, admin.

If you are at the ”read-write” user level, you can only access this command in Configure mode.

Type configure at the command prompt to enter configure mode if necessary.

Use the ip access list command to create a specific policy rule. The access list contains several of these rules: each rule pertains to the source IP address, the destination IP address, the protocol, the protocol ports (if relevant), and to the ACK bit (if relevant).

Use the no ip access list command to delete a specific rule.

The syntax for this command is:

[no] ip access-list<policy-list-number> <access-list-index>

<action> <protocol> {<source-ip> <source-wildcard> any host <source-ip>}[<operator> <port> [<port]] {<destination-ip> <destination-wildcard> any

host <destination-ip>}[<operator> <port> [<port>]] [established] [precedence]

<access-list-number>

integer (100 to 149)

 

0 is the default list

<access-list-index>

integer (1 to 254)

<command>

permit deny deny-and-notify fwd0-7

 

composite op name

<protocol>

ip tcp udp integer (1 to 255)

<source-ip>

ip network

<source-wildcard>

ip network wildcard

<operator>

eq lt gt range

<port>

integer (1 to 65535)

<destination-ip>

ip network

<destination-wildcard>

ip network wildcard

<precedence>

mandatory optional]

38

Avaya C460 Reference Guide

Page 50
Image 50
Avaya C460 manual Ip access-list