The number of entries allowed per ACL is hardware-dependent. For detailed
specifications on entries allowed per ACL, refer to your line card documentation.
Example
Dell(conf)#ip access-list standard TestList
Dell(config-std-nacl)#
Related
Commands
ip access-list extended — creates an extended access list.
show config — displays the current configuration.
permit
To permit packets from a specific source IP address to leave the switch, configure a filter.
Syntax
permit {source [mask]| any | host ip-address} [no-drop]
To remove this filter, you have two choices:
• Use the no seq sequence-number command if you know the filter’s
sequence number.
• Use the no permit {source [mask] | any | host ip-address}
command.
Parameters
source Enter the IP address in dotted decimal format of the network
from which the packet was sent.
mask (OPTIONAL) Enter a network mask in /prefix format (/x) or
A.B.C.D. The mask, when specified in A.B.C.D format, may be
either contiguous or non-contiguous.
any Enter the keyword any to specify that all routes are subject
to the filter. You can enter any of the following keywords to
specify route types.
• bytes — Enter the keyword bytes to count bytes
processed by the filter.
• count — Enter the keyword count to count packets the
filter processes.
• dscp — Enter the keyword dcsp to match to the IP
DCSCP values.
• fragments — Enter the keyword fragments to match
to non-initial fragments of a datagram.
• order — Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254
(where 0 is the highest priority and 254 is the lowest;
lower-order numbers have a higher priority). If you do
not use the keyword order, the ACLs have the lowest
order by default (255).
host ip-address Enter the keyword host then the IP address to specify a host
IP address or hostname.
Access Control Lists (ACL)
233