Enterasys Networks 1G58x-09, 1H582-xx, E1 Series ,

Security Configuration Command Set

Configuring Access Lists

Matrix E1 Series (1G58x-09 and 1H582-xx) Configuration Guide 14-95

Command Syntax of the “no” Form

The “no” form of this command removes the defined access list or entry:

no access-list access-list-number [entry]

Command Type

Router command.

Command Mode

Global configuration: Matrix>Router(config)#

Command Defaults

•If insert, replace, or move are not specified, the new entry will be appended

to the access list.

•If source2 is not specified with move, only one entry will be moved.

•If icmp-type and icmp-code are not specified, ICMP parameters will be applied

to all ICMP message types.

•If operator and port are not specified, access parameters will be applied to all

TCP or UDP ports.

•If established is not specified, TCP restriction will be applied to all

connections.

operator port (Optional) Applies access rules to TCP or UDP source or

destination port numbers. Possible operands include:

•lt port - Match only packets with a lower port number.

•gt port - Match only packets with a greater port number.

•eq port - Match only packets on a given port number.

•neq port - Match only packets not on a given port

number.

•range min-sport max-sport - Match only packets in the

range of source ports

•range min-dport max-dport - Match only packets in the

range of destination ports.

established (Optional) Applies TCP restrictions to established

connections only.