Security Configuration Command Set
Configuring Access Lists
Matrix E1 Series (1G58x-09 and 1H582-xx) Configuration Guide 14-95
Command Syntax of the “no” Form
The “no” form of this command removes the defined access list or entry:
no access-list access-list-number [entry]
Command Type
Router command.
Command Mode
Global configuration: Matrix>Router(config)#
Command Defaults
• If insert, replace, or move are not specified, the new entry will be appended
to the access list.
• If source2 is not specified with move, only one entry will be moved.
• If icmp-type and icmp-code are not specified, ICMP parameters will be applied
to all ICMP message types.
• If operator and port are not specified, access parameters will be applied to all
TCP or UDP ports.
• If established is not specified, TCP restriction will be applied to all
connections.
operator port (Optional) Applies access rules to TCP or UDP source or
destination port numbers. Possible operands include:
• lt port - Match only packets with a lower port number.
• gt port - Match only packets with a greater port number.
• eq port - Match only packets on a given port number.
• neq port - Match only packets not on a given port
number.
• range min-sport max-sport - Match only packets in the
range of source ports
• range min-dport max-dport - Match only packets in the
range of destination ports.
established (Optional) Applies TCP restrictions to established
connections only.