Filter
Top Products
Access Control List Commands
4-93
4
Related Commands
access-list ip (4-89)
show ip access-list
This command displays the rules for configured IP ACLs.
Syntax
show ip access-list {standard | extended} [acl_name]
• standard – Specifies a standard IP ACL.
• extended – Specifies an extended IP ACL.
• acl_name – Name of the ACL. (Maximum length: 16 characters)
Command Mode
Privileged Exec
Example
Related Commands
permit, deny 4-90
ip access-group (4-98)
access-list ip mask-precedence
This command changes to the IP Mask mode used to configure access control
masks. Use the no form to delete the mask table.
Syntax
[no] access-list ip mask-precedence {in | out}
• in – Ingress mask for ingress ACLs.
• out – Egress mask for egress ACLs.
Default Setting
Default system mask: Filter inbound packets according to specified IP ACLs.
Command Mode
Global Configuration
Command Usage
• A mask can only be used by all ingress ACLs or all egress ACLs.
• The precedence of the ACL rules applied to a packet is not determined by
order of the rules, but instead by the order of the masks; i.e., the first mask
that matches a rule will determine the rule that is applied to a packet.
Console#show ip access-list standard
IP standard access-list david:
permit host 10.1.1.21
permit 168.92.0.0 255.255.15.0
Console#