Security and authentication
11.5 IP access control list
In the Global configuration mode, enter the ip access-list standard <acl-num>
command, to change to the configuration mode for this ACL. If an ACL with the specified
number does not exist, an ACL with the corresponding number is created.
Note
You can display existing access control lists with the show access-lists command.
● If you exit the ACL standard configuration mode with the exit command, you return to the
Global configuration mode.
● If you exit the ACL standard configuration mode with the end command, you return to the
Privileged EXEC mode.
11.5.5.1
permit
Description
With this command, you configure an IP access control list. The IP ACL contains a description
of the IP addresses for which the incoming and outgoing frames will be forwarded.
You have the following options:
● All incoming and/or outgoing frames are forwarded.
● Incoming and/or outgoing frames of a specific host are forwarded.
● Incoming and/or outgoing frames of hosts of a specific subnet are forwarded.
● Incoming and/or outgoing frames of a specific protocol are forwarded.
Note
Processing order of the lists
The access control lists are processed on the interface in the order in which they were created.
The index number of the access control list is not used for this.
Requirement
You are in the ACL standard configuration mode.
The command prompt is as follows:
cli(config-std-nacl)#
Syntax
Call up the command with the following parameters:
permit {any |<protocol-type type(1-255)>} {any | host <src-ip-
address> | <src-ip-address> <mask>} {any | host <dest-ip-addres> |
<dest-ip-address> <mask>} [dscp <value(0-63)>]
562
SCALANCE W770/W730 acc. to IEEE 802.11n Command Line Interface
Configuration Manual, 09/2017, C79000-G8976-C324-08