Avaya P330-ML-ML Switch User Manual


 
Chapter 2 Avaya P330-ML Layer 2 CLI Commands
Avaya P330-ML Reference Guide 37
contains several of these rules: each rule pertains to the source IP address, the
destination IP address, the protocol, the protocol ports (if relevant), and to the ACK
bit (if relevant).
Use the no ip access list command to delete a specific rule.
The syntax for this command is:
[no] ip access-list <access-list-number> <access-list-index>
<action> <protocol> {<source-ip>
<source-wildcard> | any |host
<source-ip>}[<operator> <port> [<port]]
{<destination-ip> <destination-
wildcard>|any |host
<destination-ip>}[<operator> <port>
[<port>]][established] [precedence]
Example:
<access-list-number> integer (100...149)
<access-list-index> integer (1...254)
<action> permit | deny | deny-and-notify | fwd0-7
<protocol> ip | tcp | udp | integer (1...255)
<source-ip> ip address of the source network
<source-wildcard> ip address wildcard of the source network
<operator> eq | lt | gt | range
<port> integer (1...65535)
<destination-ip> ip address of the destination network
<destination-wildcard> ip address wildcard of the destination network
<precedence> mandatory — rule is mandatory for this access
list (an invalid rule invalidates entire list)
optional — rule is optional for this access list
(an invalid rule does not invalidate entire list)
Router-N# ip access-list 101 23 deny ip any
1.2.0.0 0.0.255.255
Router-N# ip access-list 101 24 fwd3 udp any host 10.1.1.1
range 20 23 optional