Cisco Systems RJ-45-to-AUX Switch User Manual

Open as PDF

of 411

CoriolisRSM1(config)#access−list 199 permit ip any ?

A.B.C.D Destination address

any Any destination host

host A single destination host

Just as in Step 7, we need to identify the destination addresses to permit:8.

CoriolisRSM1(config)#access−list 199 permit ip any any

CoriolisRSM1(config)#

You’re not quite done yet. Even though you just created an access list, it still has to be applied to an interface

before it will function.

Applying Access Lists Using access−class

Let’s create an access list that allows Telnet access to the switch from the IP address 192.151.52.19 (this is the

IP address of the only PC that will be used to Telnet into your switch). To do this, use the following

command:

CAT5KRSM(config)# access−list 5 permit 192.151.52.19

Next, you need to enter Line Configuration mode for all five VTY lines with the following command:

CAT5KRSM (config)# line vty 0 4

CAT5KRSM (config−line)#

Finally, use the access−class command to apply the access list to an inbound interface with the following

command:

CAT5KRSM(config−line)# access−class 5 in

Applying Access Lists Using distribute−list

To apply an access list using the distribute−list command, you need to have created a standard access list.

Once your access list is configured, you can apply it to an inbound or outbound interface. Here is the syntax

when using the distribute−list command to apply an access list to an outbound interface:

distribute−list {access−list number|name} out

[interface name|routing process|autonomous system number]

Let’s say you have an access list that will allow network traffic from network 192.1.1.0 but denies traffic from

interface 192.2.1.0. Do not forget that an implied “deny all” is attached to the access list:

access−list 1 permit 192.1.1.0 0.0.0.255

To use a distribution−list command you must also specify a routing protocol to use. In this case we will use

OSPF:

router ospf 1

To apply the access list using the distribute−list command, you must attach the access list to the outbound

interface you wish to filter. Let’s say for this example it is Fast Ethernet port 0/0. Here is what you command

might look like:

distribute−list 1 out fastethernet0/0

266

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems RJ-45-to-AUX Switch User Manual