Difference between revisions of "Access-list"
Jump to navigation
Jump to search
| Line 11: | Line 11: | ||
== access-list (IP extended) == | == access-list (IP extended) == | ||
access-list <access-list-number> [dynamic <dynamic-name> [timeout <minutes>]] {deny | permit} <protocol> <source> <source-wildcard> <destination> <destination-wildcard> [log | log-input]] | access-list <access-list-number> [dynamic <dynamic-name> [timeout <minutes>]] {deny | permit} <protocol> <source> <source-wildcard> <destination> <destination-wildcard> [log | log-input]] | ||
| + | |||
| + | Example: | ||
access-list 101 permit tcp host 192.168.5.6 host 192.168.1.1 eq [[telnet]] | access-list 101 permit tcp host 192.168.5.6 host 192.168.1.1 eq [[telnet]] | ||
access-list 101 deny tcp any any eq telnet log | access-list 101 deny tcp any any eq telnet log | ||
Revision as of 07:35, 16 March 2021
access-list (IP standard)
access-list <access-list-number> {deny | permit} <source> [<source-wildcard>] [log]
Example:
conf t access-list 1 deny 127.0.0.0 0.255.255.255 log access-list 1 permit any
access-list (IP extended)
access-list <access-list-number> [dynamic <dynamic-name> [timeout <minutes>]] {deny | permit} <protocol> <source> <source-wildcard> <destination> <destination-wildcard> [log | log-input]]
Example:
access-list 101 permit tcp host 192.168.5.6 host 192.168.1.1 eq telnet access-list 101 deny tcp any any eq telnet log access-list 101 permit ip any any
Related terms
See also
Advertising:
