Chapter 2 Avaya P330-ML Layer 2 CLI Commands

contains several of these rules: each rule pertains to the source IP address, the destination IP address, the protocol, the protocol ports (if relevant), and to the ACK bit (if relevant).

Use the no ip access list command to delete a specific rule.

The syntax for this command is:

[no] ip access-list <access-list-number> <access-list-index> <action> <protocol> {<source-ip> <source-wildcard> any host <source-ip>}[<operator> <port> [<port]] {<destination-ip> <destination-

wildcard>any host <destination-ip>}[<operator> <port>

[<port>]][established] [precedence]

<access-list-number>

integer (100...149)

<access-list-index>

integer (1...254)

<action>

permit deny deny-and-notify fwd0-7

<protocol>

ip tcp udp integer (1...255)

<source-ip>

ip address of the source network

<source-wildcard>

ip address wildcard of the source network

<operator>

eq lt gt range

<port>

integer (1...65535)

<destination-ip>

ip address of the destination network

<destination-wildcard>

ip address wildcard of the destination network

<precedence>

mandatory — rule is mandatory for this access

 

list (an invalid rule invalidates entire list)

 

optional — rule is optional for this access list

 

(an invalid rule does not invalidate entire list)

Example:

 

Router-N#ip access-list 101 23 deny ip any 1.2.0.0 0.0.255.255

Router-N#ip access-list 101 24 fwd3 udp any host 10.1.1.1 range 20 23 optional

Avaya P330-ML Reference Guide

37

Page 51
Image 51
Avaya P330-ML-ML manual Avaya P330-ML Layer 2 CLI Commands