C
ONFIGURING
THE
S
WITCH
3-70
Web – Click Security, ACL, Configuration. Enter an ACL name in the
Name field, select the list type (IP Standard, or IP Extended), and click
Add to open the configuration page for the new list.
Figure 3-33. Naming and Choosing ACLs
CLI – This example creates a standard IP ACL named bill.
Configuring a Standard IP ACL
Command Attributes
• Action – An ACL can contain all permit rules or all deny rules.
(Default: Permit rules)
• IP – Specifies the source IP address. Use “Any” to include all possible
addresses, “Host” to specify a specific host address in the Address
field, or “IP” to specify a range of addresses with the Address and
SubMask fields. (Options: Any, Host, IP; Default: Any)
• Address – Source IP address.
• SubMask – A subnet mask containing four integers from 0 to 255,
each separated by a period. The mask uses 1 bits to indicate “match”
and 0 bits to indicate “ignore.” The mask is bitwise ANDed with the
specified source IP address, and compared with the address for each
IP packet entering the port(s) to which this ACL has been assigned.
Console(config)#access-list ip standard bill 4-114
Console(config-std-acl)#