Filter
Top Products
FTOS XML Feature | 1161
Configure a standard ACL
To configure a standard ACL with XML, first enter FTOS XML mode, and then construct a configuration
request, as described above. An example of a complete standard ACL configuration request message is:
<?xml version="1.0" encoding="UTF-8"?>
<request MajorVersion="1" MinorVersion="0">
<cli>
<configuration>
<command> ip access list standard ToOspf</command>
<command> seq 5 deny any</command>
<command> seq 10 deny 10.2.0.0 /16</command>
<command> seq 15 deny 10.3.0.0 /16</command>
<command> seq 20 deny 10.4.0.0 /16</command>
<command> seq 25 deny 10.5.0.0 /16</command>
<command> seq 30 deny 10.6.0.0 /16</command>
<command> seq 35 deny 10.7.0.0 /16</command>
<command> seq 40 deny 10.8.0.0 /16</command>
<command> seq 45 deny 10.9.0.0 /16</command>
<command> seq 50 deny 10.10.0.0 /16</command>
</configuration>
</cli>
</request>
Configure an extended ACL
To configure an extended ACL through XML, enter FTOS XML mode and construct an XML
configuration request (see Run an FTOS XML session on page 1159). An example of a complete request
message is:
<?xml version="1.0" encoding="UTF-8"?>
<request MajorVersion="1" MinorVersion="0">
<cli>
<configuration>
<command> interface GigabitEthernet 0/0</command>
<command> ip address 10.2.1.100 255.255.255.0 </command>
<command> ip access-group nimule in no shutdown</command>
</configuration>
</cli>
</request>
Apply an IP ACL
To apply the IP ACL (standard or extended) that you created, above, to a physical or port channel interface,
construct an XML configuration request (see Run an FTOS XML session on page 1159) that encapsulates
the appropriate CLI commands, as exemplified here:
<?xml version="1.0" encoding="UTF-8"?>
<request MajorVersion="1" MinorVersion="0">
<cli>
<configuration>
<command> interface GigabitEthernet 0/0</command>
<command> ip address 10.2.1.100 255.255.255.0 </command>
<command> ip access-group nimule in no shutdown</command>
</configuration>
</cli>
</request>