37-12
Cisco IE 2000 Switch Software Configuration Guide
OL-25866-01
Chapter 37 Configuring Network Security with ACLs
How to Configure Network Security with ACLs
Command Purpose
Step 1 configure terminal Enters global configuration mode.
Step 2 access-list access-list-number {deny | permit}
source [source-wildcard] [log]
Defines a standard IPv4 access list by using a source address and
wildcard.
access-list-number—Specifies a decimal number from 1 to 99 or
1300 to 1999.
deny or permit—Specifies whether to deny or permit access if
conditions are matched.
source—Specifies the source address of the network or host from
which the packet is being sent specified as:
The 32-bit quantity in dotted-decimal format.
The keyword any as an abbreviation for source and
source-wildcard of 0.0.0.0 255.255.255.255. You do not need
to enter a source-wildcard.
The keyword host as an abbreviation for source and
source-wildcard of source 0.0.0.0.
(Optional) source-wildcard—Applies wildcard bits to the source.
(Optional) log—Causes an informational logging message about
the packet that matches the entry to be sent to the console.
Step 3 end Returns to privileged EXEC mode.