Dell PowerSwitch S4820T FTOS 8.3.19.0 Command Line Reference Guide for the S48 - Page 195
Standard IP ACL Commands, deny
View all Dell PowerSwitch S4820T manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 195 highlights
Standard IP ACL Commands When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. c and s platforms support Ingress IP ACLs only. The commands needed to configure a Standard IP ACL are: • deny • ip access-list standard • permit • resequence access-list • resequence prefix-list ipv4 • seq Note: Refer also to Commands Common to all ACL Types and Common IP ACL Commands. deny c e s Configure a filter to drop packets with a certain IP address. Syntax Parameters deny {source [mask] | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To remove this filter, you have two choices: • Use the no seq sequence-number command syntax if you know the filter's sequence number or • Use the no deny {source [mask] | any | host ip-address} command. source mask any host ip-address count Enter the IP address in dotted decimal format of the network from which the packet was sent. (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous (discontiguous). Enter the keyword any to specify that all routes are subject to the filter. Enter the keyword host followed by the IP address to specify a host IP address only. (OPTIONAL) Enter the keyword count to count packets processed by the filter. Access Control Lists (ACL) | 195