A
CCESS
C
ONTROL
L
IST
C
OMMANDS
4-117
•To remove a rule, use the no permit or no deny command followed
by the exact text of a previously configured rule.
• An ACL can contain up to 32 rules.
Example
Related Commands
permit, deny 3-117
ip access-group (3-127)
show ip access-list (3-121)

permit, deny (Standard ACL)

This command adds a rule to a Standard IP ACL. The rule sets a filter
condition for packets emanating from the specified source. Use the no
form to remove a rule.
Syntax
[no] {permit | deny} {any | source bitmask | host source}
any – Any source IP address.
source – Source IP address.
bitmask – Decimal number representing the address bits to match.
host – Keyword followed by a specific IP address.
Default Setting
None
Command Mode
Standard ACL
Command Usage
• New rules are appended to the end of the list.
Address bitmasks are similar to a subnet mask, containing four integers
from 0 to 255, each separated by a period. The binary mask uses 1 bits
Console(config)#access-list ip standard david
Console(config-std-acl)#