2-299
Catalyst 6500 Series Switch Command Reference—Release7.6
78-15328-01
Chapter2 Catalyst 6500 Series Switch and ROM Monitor Commands set ip permit
set ip permitTo enable or disable the IP permit list and to specify IP addresses to be added to the IP permit list, use
the set ip permit command.
set ip permit {enable | disable}
set ip permit {enable | disable} [telnet | ssh | snmp]
set ip permit addr [mask] [telnet | ssh | snmp | all]
Syntax Description
Defaults The default is IP permit list is disabled.
Command Types Switch command.
Command Modes Privileged.
Usage Guidelines You can achieve the same functionality of the IP permit list by using VLAN access control lists (VACLs).
VACLs are handled by hardware (PFC), and the processing is considerably faster. For VACL
configuration information, refer to the Catalyst6000 Family Software Configuration Guide.
You can configure up to 100 entries in the permit list. If you enable the IP permit list, but the permit list
has no entries configured, a caution displays on the screen.
Make sure you enter the entire disable keyword when entering the set ip permit disable command. If
you abbreviate the keyword, the abbreviation is interpreted as a host name to add to the IP permit list.
If you do not specify the snmp, ssh, telnet, or all keyword, the IP address is added to both the SNM P
and Telnet permit lists.
You enter the mask in dotted decimal format, for example, 255.255.0.0.
enable Enables the IP permit list.
disable Disables the IP perm it lis t.
telnet (Optional) Specifies the Telnet IP permit list.
ssh (Optional) Specifies the SSH IP permit list.
snmp (Optional) Specifies the SNMP IP permit list.
addr IP address to be added to the IP permit list. An IP alias or host name
that can be resolved through DNS can also be used.
mask (Optional) Subnet mask of the specified IP address.
all (Optional) Specifies all entries in the IP permit list be removed.