OS10 Enterprise Edition User Guide Release 10.4.1.0

PDF

Ingress ACL filters

To create an ingress ACL filter, use the ip access-group command in EXEC mode. To configure ingress, use the in keyword. Apply rules to the ACL with the ip access-list acl-name command. To view the access-list, use the show access-lists command.

  1. Apply an access-list on the interface with ingress direction in INTERFACE mode.
    ip access-group 
                                           access-group-name in
                                        
  2. Return to CONFIGURATION mode.
    exit
  3. Create the access-list in CONFIGURATION mode.
    ip access-list 
                                           access-list-name
                                        
  4. Create the rules for the access-list in ACCESS-LIST mode.
    permit ip host 
                                           ip-address host 
                                           ip-address count
                                        

Apply ACL rules to access-group and view access-list

OS10(config)# interface ethernet 1/1/28
                                 OS10(conf-if-eth1/1/28)# ip access-group abcd in
                                 OS10(conf-if-eth1/1/28)# exit
                                 OS10(config)# ip access-list acl1 
                                 OS10(conf-ipv4-acl)# permit ip host 10.1.1.1 host 100.1.1.1 count
                              

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\