Manuals / Avaya / Computer Equipment / Switch

Avaya manual Ip access-list Command, P130-1# ip access-list 100 2 fwd5 tcp host 149.49.0.0 host

Models: P130

1 160

Download 160 pages 5.27 Kb

Page 135

Chapter 6 Avaya P130 CLI

ip access-list Command

Use the ip access-listcommand to create a specific policy rule. This command defines a policy rule. The access list contains several of these rules. Each rule pertains to the source IP address, the destination IP address, the protocol, the protocol ports (if relevant), and to the ACK bit (if relevant). To delete a specific rule, use the no form of this command.

The syntax for this command is:

[no] [ip] access-list <access-list-number><access-list-index> <command> <protocol> {<source-ip>

<source-wildcard> any host <source-ip>}[<operator> <port> [<port]] {<destination-ip> <destination-

wildcard>any host <destination-ip>}[<operator> <port>

[<port>]][established] [precedence]

<access-list-number>	Integer (100..199)
<access-list-index>	Integer (1...9999)
<command>	permit deny deny-and-notify fwd0-7
<protocol>	ip tcp udp integer (1..255)
<source-ip>	IP network
<source-wildcard>	IP network wildcard
<operator>	eq lt gt range
<port>	Integer (1..65535)
<destination-ip>	IP network
<destination-wildcard>	IP network wildcard
<precedence>	mandatory optional]

Example:

P130-1# ip access-list 100 2 fwd5 tcp host 149.49.0.0 host 157.48.0.0

Example:

P130-1# ip access-list 100 3 fwd7 udp any any eq 25

Avaya P130 User’s Guide

121

Image 135

Avaya manual Ip access-list Command, P130-1# ip access-list 100 2 fwd5 tcp host 149.49.0.0 host

Contents

Avaya P130 Page Contents Contents P130 User’s Guide Iii Contents Contents Contents P130 User’s Guide Vii Viii P130 User’s Guide Figure A.1 Welcome 128 List of FiguresList of Figures P130 User’s Guide List of Tables List of Tables Xii P130 User’s Guide Overview P130 Family FeaturesP130 Features Auto-NegotiationLink Aggregation Group LAG QoS and Priority Support VLANsIP Multicast Filtering Igmp Snooping LAG and Link Port RedundancySpanning Tree Congestion ControlSwitch Configuration File Port MirroringSoftware Download P130 Device Manager Embedded Web P130 Command Line Interface CLIMultiService Network Manager P130 Network ManagementAvaya P130 Network Monitoring Rmon MIBs RFCSmon MIBs RFC Chapter Overview Avaya P130 User’s Guide Ieee Avaya P130 Standards SupportedChapter Overview Avaya P130 User’s Guide Front Panel LEDs P130 Front and Back PanelsLED Indications Front Panel LEDsAvaya P130 Back Panel Bups Input ConnectorP130 Front and Back Panels Avaya P130 User’s Guide Typical Applications ApplicationsChapter Applications Avaya P130 User’s Guide Setting up the Module Installation and SetupAvaya P133F2 Module Front-Panel Pushbuttons Configuration SymbolPower Supply P130/P330/P120 Back-up Power Supply BupsModem/RS-232 Positioning Avaya P130 Rack Mounting Rack MountingTo connect cascaded switches Connecting Cascaded SwitchesConfiguring the Switch Powering On P130 Module ACSwitch Settings Avaya P130 Default Settings10/100BaseTX 100BaseFX 1000BaseF Port SettingsSet interface ppp ipaddrnet-mask Connecting the Console CableConfiguring the Terminal Serial Port Parameters Connecting a Modem to the Console PortAssigning P130’s IP Stack Address Set interface ppp enableLicense Key Activation Enabling a FeatureSet license module license featureName Establishing a Serial Connection CLI ArchitectureEstablishing a Telnet Connection Conventions UsedEntering the CLI Avaya P130 CLI Architecture, Access &Conventions Getting Help Command SyntaxCommand Abbreviations Navigation, Cursor Movement and ShortcutsTree command Universal CommandsTop and Up commands Retstatus commandPage Avaya P130 CLI Command GroupsGeneral Commands Clear screenPing hostnumber Access Level Commands Syntax for this command is treeUser Level Supervisor Level Exit CommandTech Command Privileged LevelAccount Modification Commands Username CommandName Show username No Username CommandShow Username Command No username nameMultilayer Policy Licensing License CommandsShow License Command Set License CommandShow timezone Time-related CommandsShow time Get timeSet time client Command Set timezone CommandClear timezone Command Set time protocol CommandShow time parameters Set time server CommandShow time parameters Command Set time server IP addressShow system System Status CommandsShow system Command Set system location CommandSet system name string Set system contact stringShow image version modnum Set interface namevlanipaddrnetmask Show interface CommandSet interface Command Show log CommandClear log module-last module Clear log CommandP130-N clear log Reset events log of module #1 was cleared P130-N show logShow module-identity module Show module CommandShow module-identity Command Show module moduleP130-N show module-identity Mod Module Identity 4297236 Show module-config CommandShow module-config P130-N show module-configShow timeout Set logout timeoutShow keep alive Hostname Command RetstatusNo hostname hostnamestring Show startup-config Show running-config CommandShow running-config Show startup-config CommandP130-N dir Download/Upload CommandsDir Command Dir modnumShow tftp downloadupload status modnum Show tftp download/upload status CommandShow tftp download software status modnum Show tftp download software status CommandCopy stack-config tftp Command Copy stack-config tftp filename ipCopy tftp stack-config filename ip Copy module-config tftp CommandCopy module-config tftp filename ip modnum Copy tftp stack-config CommandCopy tftp EWarchive filename ip modnum Copy tftp module-config CommandCopy tftp module-configfilename ip modnum Copy tftp EWarchive CommandP130-1# copy tftp startup-config c\p130\router1.cfg Copy tftp SWimage CommandCopy tftp startup-config Command Copy tftp startup-config filename ipShow web aux-files-url Copy running-config tftp CommandCopy startup-config tftp Command Show web aux-files-url CommandSet web aux-files-url Command Copy running-config startup-config CommandCopy running-config startup-config Show erase status Command Erase startup-config CommandErase startup-config P130-1# erase startup-configNvram initialize Command Reset CommandsReset Command Reset modnumP130-N show port Port CommandsShow port Command P130-N show port modnum/portnumShow port flowcontrol modnum/portnum Show port flowcontrol CommandShow port trap Command P130-N show port trap 1/1 Port 1/1 up/down trap is disabledShow port trap modnum/portnum Show port channel module/portinfo Show port channel CommandSet port level modnum/portnum Show port mirror CommandSet port level Command Show port mirror modnum/portnumSet port negotiation Command Set port negotiation modnum/portnum enable disableP130-1# set port level 1/2 Port 1/2 port level set to Set port disable modnum/portnum Set port enable CommandSet port enable modnum/portnum Set port disable CommandSet port duplex modnum/portnum full half Set port speed CommandSet port duplex Command Set port speed modnum/portnumspeedP130-1# set port duplex 1/2 full Port 1/2 set to full-duplex Set port flowcontrol CommandSet port auto-negotiation-flowcontrol-advertisement Set port auto-negotiation-flowcontrol-advertisement CommandSet port name modnum/portnum name Set port name CommandSet port trap Command Set port trap modnum/portnum enable disableSet port channel modnum/portlist on off LAG-name Set port channel CommandSet port redundancy enable/disable Command Set port redundancy enabledisableSet port redundancy Command Show port redundancy CommandShow port redundancy Set port mirror Command Clear port mirror CommandSet port vlan Command Avaya P130 CLI Avaya P130 User’s Guide Set internal buffering modnum maxmin FlowControl CommandsSet internal buffering Command Show internal buffering CommandShow spantree modnum/portnum Spanning Tree CommandsShow spantree Command P130-N show spantree Spanning tree enabledMAC Addr Set spantree priority bridgepriority Set spantree CommandsSet spantree priority Command Set port spantree CommandP130-1# set port spantree priority 1/2 Set port spantree priority CommandSet port spantree cost Command Set port spantree priority module/port valueClear cam CAM CommandsClear cam Command Show cam CommandsP130-N show trunk 1/22 Vlan CommandsShow trunk Command Show trunk modnum/portnumClear vlan VLANnum Set trunk CommandClear vlan Command Set trunk modnum/portnum offdot1qSet inband vlan Command Show vlan CommandSet inband vlan value Set vlan Command Set vlan VLANid nameVLAN-nameSet port vlan VLANnum modnum/portnum Show port vlan-binding-mode Set port vlan-binding-mode CommandShow port vlan-binding-mode Command Set port vlan-binding-mode portlist valueClear port static-vlan Command Set port static-vlan CommandP130-1# set broadcast storm control 1 enable Congestion Control CommandsShow broadcast storm control Command Set broadcast storm control CommandP130-1# set broadcast storm-control threshold 1 Set broadcast storm control threshold CommandSet intelligent-multicast client-port-pruning time time Multicast CommandsSet intelligent-multicast enabledisable Show intelligent-multicastSet intelligent-multicast router-port-pruning time Command Set intelligent-multicast group-filtering-delay time timeSet intelligent-multicast router-port-pruning time time Show ip route IP Route Configuration CommandsShow ip route Command Set ip route CommandClear ip route Command Clear ip route destination gatewayP130# clear ip route 134.12.3.0 Route deleted PPP Commands Show ppp session commandP130-N show ppp session Set interface ppp command Set interface ppp enable enable-always disable off resetSet interface ppp ip-address net-mask Set ppp authentication incoming pap chap none Show ppp authentication CommandShow ppp authentication Set ppp authentication incoming CommandSet ppp chap-secret chap-secret Set ppp chap-secret CommandShow ppp incoming timeout Command Show ppp incoming timeoutShow ppp configuration Set ppp incoming timeout CommandSet ppp incoming timeout timeout-in-minutes Show ppp configuration CommandShow ppp baud-rate Command Set ppp baud-rate CommandShow ppp baud-rate Set radius authentication secret string Radius CommandsShow radius authentication Set radius authentication enable disableSet radius authentication server ip-addrprimarysecondary Clear radius authentication serverprimarysecondarySet radius authentication retry time time Set radius authentication server udp-port Set radius authentication retry-number CommandSet radius authentication retry number number Set radius authentication udp-port CommandNo rmon event Event Index Rmon CommandsNo rmon alarm Alarm Index No rmon history History IndexPossible parameters are Rising, Falling, risingOrfalling Rmon event CommandP130-N show rmon history Rmon history CommandShow rmon history Command Show rmon history History IndexShow rmon event Event Index Show rmon alarm CommandShow rmon alarm Alarm Index Show rmon event CommandShow rmon statistics Interface Number Show rmon statistics CommandShow snmp Snmp CommandsShow snmp Command Show snmp retries CommandSet snmp community Command Show snmp timeout CommandShow snmp timeout P130-N show snmp timeout the Snmp Timeout isSet snmp timeout number Set snmp trap enabledisable authSet snmp retries number P130-1# set snmp trap Snmp trap receiver added Set snmp trap CommandsSet snmp trap rcvraddr enabledisable allconfigfault Set snmp trap rcvraddrClear snmp trap Command Clear snmp trap rcvraddrallP130-1# clear snmp trap Snmp trap receiver deleted Policy Rules and Filters Policy NetworkingShow ip access-lists Command Policy-based Networking CommandsShow access-group Command Show access-groupShow dscp Show dscp CommandIp access-group Command No ip access-grouppolicy-list-numberdefault-actionIp access-list Command P130-1# ip access-list 100 2 fwd5 tcp host 149.49.0.0 hostP130-1# ip access-list 100 3 fwd7 udp any any eq Ip access-list-copy Command Ip access-default-action CommandIp access-default-action policy-list-number default- action Ip access-list-name Command Ip access-list-owner CommandIp access-list-cookie Command Validate-group Command Set qos policy-source CommandSet qos policy-source source Set qos dscp-cos-map Command Set qos dscp-name CommandSet qos dscp-name dscp name Ip port range upper limit for lowerlimit Set qos trust CommandIP port range upper limit for Command P130-Nsuper# set qos trust dscpSystem Requirements Avaya P130 Embedded Web ManagerFigure A.1 The Welcome Running the Embedded ManagerFigure A.2 Web-based Manager Installing the Java Plug-in Install from the Avaya SiteInstall from your Local Web Site Software Download Documentation132 Avaya P130 User’s Guide Physical SpecificationsAvaya P130 Switches Power Requirements ACSafety InterfacesBasic Mtbf Safety Information Avaya Approved SFF/SFP Gbic TransceiversEMC Emissions Usage Restriction InstallationAgency Approval SpecificationsConsole Communications Connector Pin AssignmentsCLI Command Set Index of all CLI CommandsAppendix C Index of all CLI Commands Avaya P130 User’s Guide 141 Page How to Contact Us United StatesEmea Europe, Middle East and Africa Region Email csctechnical@avaya.com AP Asia Pacific Region 146 Avaya P130 User’s Guide