Filter
Top Products
ACL Commands
deny (IP)
SPS208G/SPS224G4/SPS2024 Command Line Interface Reference Guide 52
3
fin. The flags are concatenated into one string. For example: +fin-ack. To
define more than 1 flag - enter additional flags one after another without a
space (example +syn-ack).
Default Configuration
No IPv4 ACL is defined.
Command Mode
IP-Access List Configuration mode
User Guidelines
Use the ip access-list Global Configuration mode command to enable the IP-
Access List Configuration mode.
Before an Access Control Element (ACE) is added to an ACL, all packets are
permitted. After an ACE is added, an implied deny-any-any condition exists at the
end of the list and those packets that do not match the conditions defined in the
permit statement are denied.
Example
The following example shows how to define a permit statement for an IP ACL.
Console(config)# ip access-list ip-acl1
Console(config-ip-al)# permit rsvp 192.1.1.1 0.0.0.0 any dscp 56
deny (IP)
The deny IP-Access List Configuration mode command denies traffic if the
conditions defined in the deny statement match.