Security Configuration Command Set
Configuring Access Lists
14-90 Matrix E1 Series (1G58x-09 and 1H582-xx) Configuration Guide
Syntax Description
Command Type
Router command.
Command Mode
Privileged EXEC: Matrix>Router#
Command Defaults
If number is not specified, the entire table of access lists will be displayed.
Example
This example shows how to display IP access list number 101. This is an extended access list, which
permits or denies ICMP, UDP and IP packets based on restrictions configured with the one of the
access-list commands. For details on configuring standard access lists, refer to Section 14.3.7.2.
For details on configuring extended access lists, refer to Section 14.3.7.3.
14.3.7.2 access-list (standard) Use this command to define a standard IP access list by number when operating in router mode.
Restrictions defined by an access list are applied by using the ip access-group command
(Section 14.3.7.4).
access-list access-list-number [insert | replace entry] | [move destination source1
[source2]] {deny | permit} source [source-wildcard]
access-list-
number (Optional) Displays access list information for a specific
access list number. Valid values are between 1 and 199.
Matrix>Router#show access-lists 101
Extended IP access list 101
permit icmp host 18.2.32.130 any
permit udp host 198.92.32.130 host 171.68.225.126 eq
deny ip 150.136.0.0 0.0.255.255 224.0.0.0 15.255.255.255
deny ip 11.6.0.0 0.1.255.255 224.0.0.0 15.255.255.255 2)
deny ip 172.24.24.0 0.0.1.255 224.0.0.0 15.255.255.255
ROUTER: This command can be executed when the device is in router mode only.
For details on how to enable router configuration modes, refer to Section 3.3.3.